]> git.proxmox.com Git - mirror_ubuntu-artful-kernel.git/commit
projects / mirror_ubuntu-artful-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0856e8f) | patch
seccomp: Enable speculation flaw mitigations
authorKees Cook <keescook@chromium.org>
Tue, 1 May 2018 22:07:31 +0000 (15:07 -0700)
committerStefan Bader <stefan.bader@canonical.com>
Mon, 14 May 2018 10:09:57 +0000 (12:09 +0200)
commit7d85e158712ca8ed70206c893c49b501ff24c4a2
tree5f2ba2458935ba817df77df2432009cc6fbeb34ftree
parent0856e8f2fb597df7ff952ab1fe98327708a878fbcommit | diff
seccomp: Enable speculation flaw mitigations

When speculation flaw mitigations are opt-in (via prctl), using seccomp
will automatically opt-in to these protections, since using seccomp
indicates at least some level of sandboxing is desired.

Signed-off-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
CVE-2018-3639 (x86)

Signed-off-by: Tyler Hicks <tyhicks@canonical.com>
Signed-off-by: Stefan Bader <stefan.bader@canonical.com>
kernel/seccomp.c diff | blob | blame | history
Ubuntu Artful kernel mirror