Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Ubuntu Local Security Checks >> USN15-1 : lvm10 vulnerability

Vulnerability Assessment Details

USN15-1 : lvm10 vulnerability
Vulnerability Assessment Summary
lvm10 vulnerability

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote package "lvm10" is missing a security patch.

Description :

Recently, Trustix Secure Linux discovered a vulnerability in a
supplemental script of the lvm10 package. The program
"lvmcreate_initrd" created a temporary directory in an insecure way,
which could permit a symlink attack to create or overwrite arbitrary
files with the rights of the user invoking the program.

Solution :

Upgrade to :
- lvm10-1.0.8-4ubuntu1.1 (Ubuntu 4.10)



Network Security Threat Level: High


Networks Security ID:

Vulnerability Assessment Copyright: Ubuntu Security Notice (C) 2005 Canonical, Inc. / NASL script (C) 2005 Michel Arboi
Cables, Connectors


Intel Core i7-7700 3.60GHz Quad-Core CPU picture

Intel Core i7-7700 3.60GHz Quad-Core CPU

$41.62


Intel i5-8500 3.00 GHz 6-Core Desktop CPU Processor SR3XE picture

Intel i5-8500 3.00 GHz 6-Core Desktop CPU Processor SR3XE

$50.00


Intel Core i9-12900KF - 12th Gen Alder Lake 16-Core (8P+8E) 3.2GHz LGA CPU picture

Intel Core i9-12900KF - 12th Gen Alder Lake 16-Core (8P+8E) 3.2GHz LGA CPU

$262.99


Intel - Core i9-14900K 14th Gen 24-Core 32-Thread - 4.4GHz (6.0GHz Turbo) Soc... picture

Intel - Core i9-14900K 14th Gen 24-Core 32-Thread - 4.4GHz (6.0GHz Turbo) Soc...

$544.99


Intel Core i5-8500 Six Core Desktop PC CPU Processor 3.00GHz LGA1151 SR3XE picture

Intel Core i5-8500 Six Core Desktop PC CPU Processor 3.00GHz LGA1151 SR3XE

$49.99


AMD Ryzen 9 7900X3D Gaming Processor - 12 Core And 24 Threads - 5.60 GHz Max Boo picture

AMD Ryzen 9 7900X3D Gaming Processor - 12 Core And 24 Threads - 5.60 GHz Max Boo

$329.99


AMD Ryzen 5 4500 6-Core 3.6GHz Socket AM4 65W CPU Desktop Processor picture

AMD Ryzen 5 4500 6-Core 3.6GHz Socket AM4 65W CPU Desktop Processor

$77.77


Intel - Core i7-9700 Octa-Core 3 GHz Desktop Processor LGA 1151 picture

Intel - Core i7-9700 Octa-Core 3 GHz Desktop Processor LGA 1151

$123.99


Intel Xeon E5-2673 v4 20-Core 2.30GHz 50MB 9.60GT/s 135W Processor SR2KE picture

Intel Xeon E5-2673 v4 20-Core 2.30GHz 50MB 9.60GT/s 135W Processor SR2KE

$78.99


Intel Core i7-4790 SR1QF 3.60GHz CPU Processor picture

Intel Core i7-4790 SR1QF 3.60GHz CPU Processor

$36.00


Discussions

No Discussions have been posted on this vulnerability.