Ubuntu has issued an update for the kernel. This fixes some weaknesses, security issues, and vulnerabilities, which can be exploited by malicious, local users to disclose system and potentially sensitive information, conduct spoofing attacks, bypass certain security restrictions, cause a DoS (Denial of Service), and gain escalated privileges, and by malicious people to cause a DoS and potentially compromise a vulnerable system.

For more information:
SA37590
SA38499
SA39490
SA39982
SA40205
SA40691
SA40965
SA41234
SA41245
SA41263
SA41284
SA41378
SA41493
SA41650
SA41693

1) Errors within the implementation of the External Data Representation (XDR) for NFSv4 can be exploited to cause a kernel panic and potentially execute arbitrary code by sending specially crafted compound requests to the NFSv4 server.

2) An error within the GFS2 file system when handing certain rename operations can be exploited to cause a kernel crash.

3) An error within the SCTP implementation can be exploited to cause a crash by sending specially crafted network traffic.

4) An error within the SCTP implementation when handling HMAC calculations can be exploited to cause a crash by sending specially crafted network traffic.

5) An error within the RDS implementation can be exploited to execute arbitrary code with kernel privileges.

Solution
Apply updated packages.
Further details available to Secunia VIM customers

Provided and/or discovered by
The vendor credits:
1) Neil Brown
2) Bob Peterson
3) Thomas Dreibholz
4, 5) Dan Rosenberg

Changelog
Further details available to Secunia VIM customers

Original Advisory
USN-1000-1:
https://lists.ubuntu.com/archives/ubuntu-security-announce/2010-October/001181.html

Other references
Further details available to Secunia VIM customers

Deep Links
Links available to Secunia VIM customers