NVD Vulnerability Detail

CVE-2008-2729

Summary	arch/x86_64/lib/copy_user.S in the Linux kernel before 2.6.19 on some AMD64 systems does not erase destination memory locations after an exception during kernel memory copy, which allows local users to obtain sensitive information.
Summary	arch/x86_64/lib/copy_user.S en el kernel de Linux anterior a 2.6.19 en algunos sistemas AMD64 no borra las posiciones de memoria de destino después de una excepción, durante la copia de memoria del kernel, lo que permite a usuarios locales obtener información sensible.
Publication Date	July 1, 2008, 7:41 a.m.
Registration Date	Jan. 29, 2021, 1:37 p.m.
Last Update	April 23, 2026, 9:35 a.m.

CVSS2.0 : MEDIUM
Score	4.9
Vector	AV:L/AC:L/Au:N/C:C/I:N/A:N
攻撃元区分(AV)	ローカル
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	なし
可用性への影響(A)	なし
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:o:linux:linux_kernel::::::::					2.6.19

Related information, measures and tools

No	URL	refsource
1	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=3022d734a54cbd2b65eea9a024564821101b4a9a%3Bhp=f0f4c3432e5e1087b3a8c0e6bd4113d3c37497ff	cve@mitre.org
2	http://rhn.redhat.com/errata/RHSA-2008-0508.html	cve@mitre.org
3	http://secunia.com/advisories/30849	cve@mitre.org
4	http://secunia.com/advisories/30850	cve@mitre.org
5	http://secunia.com/advisories/31107	cve@mitre.org
6	http://secunia.com/advisories/31551	cve@mitre.org
7	http://secunia.com/advisories/31628	cve@mitre.org
8	http://www.debian.org/security/2008/dsa-1630	cve@mitre.org
9	http://www.mandriva.com/security/advisories?name=MDVSA-2008:174	cve@mitre.org
10	http://www.redhat.com/support/errata/RHSA-2008-0519.html	cve@mitre.org
11	http://www.redhat.com/support/errata/RHSA-2008-0585.html	cve@mitre.org
12	http://www.securityfocus.com/bid/29943	cve@mitre.org
13	http://www.securitytracker.com/id?1020364	cve@mitre.org
14	http://www.ubuntu.com/usn/usn-625-1	cve@mitre.org
15	https://bugzilla.redhat.com/show_bug.cgi?id=451271	cve@mitre.org
16	https://exchange.xforce.ibmcloud.com/vulnerabilities/43558	cve@mitre.org
17	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11571	cve@mitre.org
18	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=3022d734a54cbd2b65eea9a024564821101b4a9a%3Bhp=f0f4c3432e5e1087b3a8c0e6bd4113d3c37497ff	af854a3a-2127-422b-91ae-364da2661108
19	http://rhn.redhat.com/errata/RHSA-2008-0508.html	af854a3a-2127-422b-91ae-364da2661108
20	http://secunia.com/advisories/30849	af854a3a-2127-422b-91ae-364da2661108
21	http://secunia.com/advisories/30850	af854a3a-2127-422b-91ae-364da2661108
22	http://secunia.com/advisories/31107	af854a3a-2127-422b-91ae-364da2661108
23	http://secunia.com/advisories/31551	af854a3a-2127-422b-91ae-364da2661108
24	http://secunia.com/advisories/31628	af854a3a-2127-422b-91ae-364da2661108
25	http://www.debian.org/security/2008/dsa-1630	af854a3a-2127-422b-91ae-364da2661108
26	http://www.mandriva.com/security/advisories?name=MDVSA-2008:174	af854a3a-2127-422b-91ae-364da2661108
27	http://www.redhat.com/support/errata/RHSA-2008-0519.html	af854a3a-2127-422b-91ae-364da2661108
28	http://www.redhat.com/support/errata/RHSA-2008-0585.html	af854a3a-2127-422b-91ae-364da2661108
29	http://www.securityfocus.com/bid/29943	af854a3a-2127-422b-91ae-364da2661108
30	http://www.securitytracker.com/id?1020364	af854a3a-2127-422b-91ae-364da2661108
31	http://www.ubuntu.com/usn/usn-625-1	af854a3a-2127-422b-91ae-364da2661108
32	https://bugzilla.redhat.com/show_bug.cgi?id=451271	af854a3a-2127-422b-91ae-364da2661108
33	https://exchange.xforce.ibmcloud.com/vulnerabilities/43558	af854a3a-2127-422b-91ae-364da2661108
34	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11571	af854a3a-2127-422b-91ae-364da2661108

Common Vulnerabilities List