CVE-2008-2729

arch/x86_64/lib/copy_user.S in the Linux kernel before 2.6.19 on some AMD64 systems does not erase destination memory locations after an exception during kernel memory copy, which allows local users to obtain sensitive information.

🔗 References (34)

• cve@mitrehttp://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=3022d734a54cbd2b65eea9a024564821101b4a9a%3Bhp=f0f4c3432e5e1087b3a8c0e6bd4113d3c37497ff
• cve@mitrehttp://rhn.redhat.com/errata/RHSA-2008-0508.html
• cve@mitrehttp://secunia.com/advisories/30849
• cve@mitrehttp://secunia.com/advisories/30850
• cve@mitrehttp://secunia.com/advisories/31107
• cve@mitrehttp://secunia.com/advisories/31551
• cve@mitrehttp://secunia.com/advisories/31628
• cve@mitrehttp://www.debian.org/security/2008/dsa-1630
• cve@mitrehttp://www.mandriva.com/security/advisories?name=MDVSA-2008:174
• cve@mitrehttp://www.redhat.com/support/errata/RHSA-2008-0519.html
• cve@mitrehttp://www.redhat.com/support/errata/RHSA-2008-0585.html
• cve@mitrehttp://www.securityfocus.com/bid/29943
• cve@mitrehttp://www.securitytracker.com/id?1020364
• cve@mitrehttp://www.ubuntu.com/usn/usn-625-1
• cve@mitrehttps://bugzilla.redhat.com/show_bug.cgi?id=451271