LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Fedora alert FEDORA-2010-13708 (udisks)



From:
    	      updates@fedoraproject.org 


To:
    	      package-announce@lists.fedoraproject.org 


Subject:
    	      [SECURITY] Fedora 13 Update: udisks-1.0.1-4.fc13 


Date:
    	      Sat, 11 Sep 2010 09:01:07 +0000


Message-ID:
    	      <20100911090107.60DB6110848@bastion02.phx2.fedoraproject.org>


Archive-link:
    	      Article, Thread
              


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-13708
2010-08-30 17:44:14
--------------------------------------------------------------------------------

Name        : udisks
Product     : Fedora 13
Version     : 1.0.1
Release     : 4.fc13
URL         : http://www.freedesktop.org/wiki/Software/udisks
Summary     : Storage Management Service
Description :
udisks provides a daemon, D-Bus API and command line tools
for managing disks and storage devices.

--------------------------------------------------------------------------------
Update Information:

    This update addresses a security problem when using the clustered LVM daemon
clvmd from the package lvm2-cluster on systems where you have non-root users.
The lvm2 package on its own is not vulnerable to this problem but if you are
using lvm2-cluster you must update both together.        Further details are
given in the Red Hat Bugzilla: https://bugzilla.redhat.com/CVE-2010-2526
After updating the packages, make sure that clvmd restarted itself.        This
update also includes several other important bug fixes and enhancements - see
the detailed changelog.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Aug  9 2010 David Zeuthen <davidz@redhat.com> - 1.0.1-4.fc13
- Add BRs for autoreconf
* Mon Aug  9 2010 David Zeuthen <davidz@redhat.com> - 1.0.1-3.fc13
- Do autoreconf to guarantee that we build against a recent enough liblvm2
* Mon Aug  9 2010 David Zeuthen <davidz@redhat.com> - 1.0.1-2.fc13
- Add patch to work with latest liblvm2 API (See #622385)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #614248 - CVE-2010-2526 lvm2-cluster: insecurity when communicating between lvm2 and
clvmd
        https://bugzilla.redhat.com/show_bug.cgi?id=614248
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update udisks' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-...
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds