USN-1001-1: LVM2 vulnerability
06 October 2010
- lvm2 -
The cluster logical volume manager daemon (clvmd) in LVM2 did not correctly
validate credentials. A local user could use this flaw to manipulate
logical volumes without root privileges and cause a denial of service in
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.
In a clustering environment, you need to restart clvmd after the update.