Lucene search
UbuntuUSN-1001-1HistoryOct 06, 2010 - 12:00 a.m.
LVM2 vulnerability
2010-10-0600:00:00
ubuntu.com
34
9 High
AI Score
Confidence
High
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.3%
Releases
- Ubuntu 10.04
- Ubuntu 9.10
- Ubuntu 9.04
- Ubuntu 8.04
- Ubuntu 6.06
Packages
- lvm2 -
Details
The cluster logical volume manager daemon (clvmd) in LVM2 did not correctly
validate credentials. A local user could use this flaw to manipulate
logical volumes without root privileges and cause a denial of service in
the cluster.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 9.10 | noarch | clvm | < 2.02.39-0ubuntu11.1 | UNKNOWN |
| Ubuntu | 9.10 | noarch | lvm2 | < 2.02.39-0ubuntu11.1 | UNKNOWN |
| Ubuntu | 9.10 | noarch | lvm2-udeb | < 2.02.39-0ubuntu11.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | clvm | < 2.02.39-0ubuntu9.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | lvm2 | < 2.02.39-0ubuntu9.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | lvm2-udeb | < 2.02.39-0ubuntu9.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | clvm | < 2.02.26-1ubuntu9.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | lvm2 | < 2.02.26-1ubuntu9.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | lvm2-udeb | < 2.02.26-1ubuntu9.1 | UNKNOWN |
| Ubuntu | 6.06 | noarch | clvm | < 2.02.02-1ubuntu1.6 | UNKNOWN |
References
Related
openvas
openvas
Debian Security Advisory DSA 2095-1 (lvm2)
2010-10-10 00:00:00
Fedora Update for lvm2 FEDORA-2010-13239
2010-12-02 00:00:00
CentOS Update for lvm2-cluster CESA-2010:0567 centos5 i386
2011-08-09 00:00:00
nessus
nessus
SuSE 11.1 Security Update : LVM2 (SAT Patch Number 2982)
2011-01-21 00:00:00
Fedora 14 : lvm2-2.02.73-1.fc14 (2010-13239)
2010-09-02 00:00:00
Oracle Linux 5 : lvm2-cluster (ELSA-2010-0567)
2013-07-12 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: udisks-1.0.1-4.fc13
2010-09-11 09:01:07
[SECURITY] Fedora 13 Update: lvm2-2.02.73-2.fc13
2010-09-11 09:01:07
[SECURITY] Fedora 14 Update: lvm2-2.02.73-1.fc14
2010-09-02 03:57:01
cve
cve
CVE-2010-2526
2010-08-05 13:22:00
prion
prion
Design/Logic Flaw
2010-08-05 13:22:00
securityvulns
securityvulns
[ MDVSA-2010:171 ] lvm2
2010-09-12 00:00:00
redhat
redhat
(RHSA-2010:0568) Moderate: lvm2-cluster security update
2010-07-28 00:00:00
(RHSA-2010:0567) Moderate: lvm2-cluster security update
2010-07-28 00:00:00
debian
debian
[SECURITY] [DSA 2095-1] New lvm2 packages fix denial of service
2010-08-23 10:12:46
[SECURITY] [DSA 2095-1] New lvm2 packages fix denial of service
2010-08-23 10:12:46
ubuntucve
ubuntucve
CVE-2010-2526
2010-08-05 00:00:00
debiancve
debiancve
CVE-2010-2526
2010-08-05 13:22:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:46:28
oraclelinux
oraclelinux
lvm2-cluster security update
2010-07-28 00:00:00
centos
centos
lvm2 security update
2010-07-29 13:37:04
osv
osv
lvm2 - denial of service
2010-08-23 00:00:00
gentoo
gentoo
Multiple packages, Multiple vulnerabilities fixed in 2011
2014-12-11 00:00:00
9 High
AI Score
Confidence
High
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.3%
Related for USN-1001-1