OVAL Reference oval:org.mitre.oval:def:12539

Oval Definition:

oval:org.mitre.oval:def:12539

Revision Date:	2014-07-21	Version:	5
Title:	DSA-2095-1 lvm2 -- insecure communication protocol
Description:	Alasdair Kergon discovered that the cluster logical volume manager daemon in lvm2, The Linux Logical Volume Manager, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service. For the stable distribution, this problem has been fixed in version 2.02.39-8 For the testing distribution, and the unstable distribution, this problem has been fixed in version 2.02.66-3 We recommend that you upgrade your lvm2 package.
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2010-2526 DSA-2095-1
Platform(s):	Debian GNU/Linux 5.0	Product(s):	lvm2
Definition Synopsis
Debian GNU/Linux 5.0 is installed AND Packages section clvm DPKG is earlier than 2.02.39-8 OR lvm2 DPKG is earlier than 2.02.39-8