mirrors/nixpkgs
1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-12-25 03:17:13 +00:00
Code Issues Wiki Activity
nixpkgs/nixos/doc/manual/release-notes
History
Martin Weinelt 3ee206291a
linux: enable BPF_UNPRIV_DEFAULT_OFF between 5.10 and 5.15 
Disable unprivileged access to BPF syscalls to prevent denial of service
and privilege escalation via

a) potential speculative execution side-channel-attacks on unmitigated
hardware[0]

or

b) unvalidated memory access in ringbuffer helper functions[1].

Fixes: CVE-2021-4204, CVE-2022-23222

[0] https://ebpf.io/summit-2021-slides/eBPF_Summit_2021-Keynote-Daniel_Borkmann-BPF_and_Spectre.pdf
[1] https://www.openwall.com/lists/oss-security/2022/01/13/1
2022-01-15 23:44:19 +01:00
..
release-notes.xml docs: nixos release notes to CommonMark (2105) 2021-06-23 12:33:16 -05:00
rl-1310.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-1404.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-1412.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-1509.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-1603.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-1609.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-1703.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-1709.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-1803.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-1809.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-1903.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-1909.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-2003.section.md docs: nixos release notes (w/o 2105 - separate PR) 2021-06-22 09:52:13 -05:00
rl-2009.section.md nixos/doc: fix merged items in 20.09 rel notes 2021-09-11 08:16:31 +00:00
rl-2105.section.md nixos: fix release notes about linux_latest version 2021-08-16 19:32:04 +02:00
rl-2111.section.md linux: enable BPF_UNPRIV_DEFAULT_OFF between 5.10 and 5.15 2022-01-15 23:44:19 +01:00
rl-2205.section.md Merge pull request #151946 from mweinelt/frr 2022-01-12 20:51:12 +01:00