17 matches found
Linux Distros Unpatched Vulnerability : CVE-2010-2526
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not...
Oracle: Security Advisory (ELSA-2010-0567)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 5 : lvm2-cluster (ELSA-2010-0567)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2010-0567 advisory. 2.02.56-el55.4 - CVE-2010-2526: Fix insecurity when communicating between lvm2 and clvmd. Resolves: 616044 Tenable has extracted the preceding description block...
RHEL 5 : lvm2-cluster (RHSA-2010:0567)
An updated lvm2-cluster package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...
Scientific Linux Security Update : lvm2-cluster,lvm2 for SL5
It was discovered that the cluster logical volume manager daemon clvmd did not verify the credentials of clients connecting to its control UNIX abstract socket, allowing local, unprivileged users to send control commands that were intended to only be available to the privileged root user. This...
SuSE 11.1 Security Update : LVM2 (SAT Patch Number 2982)
clvmd, when running, allowed unprivileged local users to issue arbitrary lvm commands CVE-2010-2526 via incorrect permissions. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update...
Fedora Update for lvm2 FEDORA-2010-13239
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
openSUSE Security Update : lvm2 (openSUSE-SU-2010:0615-1)
clvmd allowed unprivileged users to issue arbitrary lvm commands CVE-2010-2526. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update lvm2-2920. The text description of this plugin is C SUSE LLC...
Fedora Update for udisks FEDORA-2010-13708
Check for the Version of udisks OpenVAS Vulnerability Test Fedora Update for udisks FEDORA-2010-13708 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Fedora 13 : lvm2-2.02.73-2.fc13 / udisks-1.0.1-4.fc13 (2010-13708)
This update addresses a security problem when using the clustered LVM daemon clvmd from the package lvm2-cluster on systems where you have non-root users. The lvm2 package on its own is not vulnerable to this problem but if you are using lvm2-cluster you must update both together. Further details...
[SECURITY] [DSA 2095-1] New lvm2 packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-2095-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano August 23, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2095-1] New lvm2 packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-2095-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano August 23, 2010 http://www.debian.org/security/faq -...
CVE-2010-2526
The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service daemon exit or logical-volume...
CVE-2010-2526
CVE-2010-2526 affects the cluster logical volume manager daemon (clvmd) in LVM2-cluster (LVM2) before 2.02.72 . The issue arises because clvmd does not verify credentials of clients over its control socket, enabling local users to issue crafted commands that can cause the daemon to exit, or to ac...
CentOS 5 : lvm2-cluster (CESA-2010:0567)
An updated lvm2-cluster package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...
Moderate: Red Hat Security Advisory: lvm2-cluster security update
An updated lvm2-cluster package that fixes one security issue is now available for Red Hat Global File System for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which...
lvm2-cluster security update
2.02.56-el55.4 - CVE-2010-2526: Fix insecurity when communicating between lvm2 and clvmd. Resolves: 616044...