/srv/irclogs.ubuntu.com/2022/03/08/#ubuntu-kernel.txt

=== mhcerri8 is now known as mhcerri
JianLeiHello all. Where can i find the difference between ubuntu kernel and upstream kernel´╝č06:26
chiluk_@jianlei gitweb for Ubuntu kernels is https://kernel.ubuntu.com/git/?q=ubuntu18:39
chiluk_iirc you are going to want the ubuntu/ubuntu-<release>.git trees18:40
=== chiluk_ is now known as chiluk
tomreyni just read https://www.vusec.net/projects/bhi-spectre-bhb/ and checked for the value of /proc/sys/kernel/unprivileged_bpf_disabled on 18.04 and 20.04 and what may be 22.04, only the latter has it on 2, the others have it at 0. are these plans to change it for the older LTS?18:48
tomreynThis is CVE-2022-0001 and CVE-2022-0002. For reference, https://www.kernel.org/doc/html/latest/admin-guide/sysctl/kernel.html#unprivileged-bpf-disabled - I'm aware mitigation by sysctl is possible.18:58
ubottu** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0001>18:58
ubottu** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0002>18:58
tomreynhmm sorry about the spam18:58
tomreynok, i just noticed it's actually set to 2 on latest 20.04 as well, and probably 18.04 as well.18:59
tomreynTL;DR: please ignore the above.19:00
sbeattietomreyn: 18.04 did not have 2 as default, kernels are going out now to have that be the default going back to 4.4 kernels.19:08
sbeattietomreyn: also https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/BHI has information19:08
tomreynsbeattie: nice, thank you.19:09
chilukanyone else killing some time checking out the new CVE hotness going around news-cycle https://dirtypipe.cm4all.com/ ?20:41
sarnoldhey chiluk :)20:43
chilukhey sarnold long time...20:43
sarnoldchiluk: aye, it's hard to understand just how fast time goes..20:43
chilukseriously it's been like 4 years now... I finally stood up IRC again just a few months ago.20:43
chilukcrap nm ... almost 5 come April.20:44
sarnold*wow*20:44
sarnoldthe last two years have been seriously weird but I think I would have guessed about two, heh20:44
chiluksarnold anyhow, are you folks planning a accelerated kernel spin for this or just a livepatch?20:45
chiluksarnold... looks like we might be slowly migrating to Ubuntu .. so you might be dropping in more often.20:46
chiluks/you/i/20:46
sarnoldchiluk: oh sweet! :) this one's going through the grinder now, https://lists.ubuntu.com/archives/focal-changes/2022-March/date.html -- usns might be a little bit further away, but it's all in motion20:48
chiluksarnold if I hadn't told you Congrats on the promotion.20:51
chiluksarnold what is usns?20:52
sarnoldchiluk: heh, maybe someone else? I haven't gone up for a promotion since we introduced an engineering progression track20:52
chilukI thought you managed the kernel team now.20:53
sarnoldchiluk: sorry, just lazy; USNs  :) www.ubuntu.com/usn/20:53
sarnoldah, thankfully no :) still Just A Guy on the security team20:53
chilukwell congrats on not joining the dark side.20:53
sarnold:D20:54
chilukwhen was the last time you heard of a darker side than the security team... ;)20:54
sarnoldevery time The Spreadsheet is mentioned I get goosebumps..20:55
chilukI'm thankful I don't even know what that is.20:55
chilukor at least I've long forgotten.20:56
sarnoldsounds good man, sounds good :)20:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!