CVE-2008-2729

NameCVE-2008-2729
Descriptionarch/x86_64/lib/copy_user.S in the Linux kernel before 2.6.19 on some AMD64 systems does not erase destination memory locations after an exception during kernel memory copy, which allows local users to obtain sensitive information.
SourceCVE (at NVD; LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-1630-1
NVD severitymedium (attack range: local)

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
fai-kernelssourceetch1.17+etch.22etch2mediumDSA-1630-1
linux-2.6source(unstable)2.6.19-1medium
linux-2.6sourceetch2.6.18.dfsg.1-22etch2mediumDSA-1630-1
user-mode-linuxsourceetch2.6.18-1um-2etch.22etch2mediumDSA-1630-1

Notes

3022d734a54cbd2b65eea9a024564821101b4a9a

Search for package or bug name: Reporting problems