arch/x86_64/lib/copy_user.S in the Linux kernel before 2.6.19 on some AMD64 systems does not erase destination memory locations after an exception during kernel memory copy, which allows local users to obtain sensitive information.
https://bugzilla.redhat.com/show_bug.cgi?id=451271
http://rhn.redhat.com/errata/RHSA-2008-0508.html
http://www.redhat.com/support/errata/RHSA-2008-0519.html
http://www.securitytracker.com/id?1020364
http://secunia.com/advisories/30849
http://www.securityfocus.com/bid/29943
http://secunia.com/advisories/31107
http://www.mandriva.com/security/advisories?name=MDVSA-2008:174
http://secunia.com/advisories/30850
http://www.ubuntu.com/usn/usn-625-1
http://www.redhat.com/support/errata/RHSA-2008-0585.html
http://secunia.com/advisories/31628
http://www.debian.org/security/2008/dsa-1630
http://secunia.com/advisories/31551
https://exchange.xforce.ibmcloud.com/vulnerabilities/43558
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11571