CVE-2008-2729

Published: Jun 30, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

arch/x86_64/lib/copy_user.S in the Linux kernel before 2.6.19 on some AMD64 systems does not erase destination memory locations after an exception during kernel memory copy, which allows local users to obtain sensitive information.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=3022d734a54cbd2b65eea9a024564821101b4a9a%3Bhp=f0f4c3432e5e1087b3a8c0e6bd4113d3c37497ff

x_refsource_CONFIRM

DSA-1630

vendor-advisory

x_refsource_DEBIAN

RHSA-2008:0519

vendor-advisory

x_refsource_REDHAT

linux-kernel-destination-info-disclosure(43558)

vdb-entry

x_refsource_XF

oval:org.mitre.oval:def:11571

vdb-entry

signature

x_refsource_OVAL

30849

third-party-advisory

x_refsource_SECUNIA

1020364

vdb-entry

x_refsource_SECTRACK

31551

third-party-advisory

x_refsource_SECUNIA

30850

third-party-advisory

x_refsource_SECUNIA

RHSA-2008:0585

vendor-advisory

x_refsource_REDHAT

MDVSA-2008:174

vendor-advisory

x_refsource_MANDRIVA

31107

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=451271

x_refsource_CONFIRM

29943

vdb-entry

x_refsource_BID

31628

third-party-advisory

x_refsource_SECUNIA

USN-625-1

vendor-advisory

x_refsource_UBUNTU

RHSA-2008:0508

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2008-2729

Description

Affected Products

References