CVE-2008-2729 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2729): arch/x86_64/lib/copy_user.S in the Linux kernel before 2.6.19 on some AMD64 systems does not erase destination memory locations after an exception during kernel memory copy, which allows local users to obtain sensitive information.
hardened-kernel unaffected at present time. Removing alias. CC'ing in maintainers of openvz-sources and usermode-sources as affected versions still appear to be in the tree.
openvz-sources-2.6.27 are now stable, so openvz-sources are unaffected I think. Right?