APPLIED I: Re: [SRU Impish/Unstable 0/3] s390x BPF JIT vulnerabilities
Paolo Pisati
paolo.pisati at canonical.com
Wed Sep 22 08:05:17 UTC 2021
On Tue, Sep 21, 2021 at 03:35:22PM -0300, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
>
> s390 BPF JIT vulnerabilities allow the eBPF verifier to be bypassed, leading to
> possible local privilege escalation.
>
> [Mitigation]
>
> Disable unprivileged eBPF.
> sysctl -w kernel.unprivileged_bpf_disabled=1
>
> [Potential regression]
>
> BPF programs might execute incorrectly, affecting seccomp, socket filters,
> tracing and other BPF users.
--
bye,
p.
More information about the kernel-team
mailing list