The problem can be corrected by upgrading the affected package to version 2.6.12-10.28. You have to restart your computer after a standard system upgrade to effect the necessary changes.
Herbert Xu discovered a remote Denial of Service vulnerability in the ICMP packet handler. In some situations a memory allocation was released twice, which led to memory corruption. A remote attacker could exploit this to crash the machine.