~alpine/users

3 4

[alpine-user] MELTDOWN + SPECTRE

Details
Message ID
<DM5PR0601MB3592503AFBB5DD94351474BCF11F0@DM5PR0601MB3592.namprd06.prod.outlook.com>
Sender timestamp
1515102457
DKIM signature
missing
Download raw message
I wanted to know if Alpine Linux is vulnerable to the recent Meltdown or Spectre attacks. Are there any patches? If running from within Docker, is there anything I need to do?

Thanks,
-Rob
Details
Message ID
<DM5PR0601MB3592BBA11CC53DA767B75B67F11F0@DM5PR0601MB3592.namprd06.prod.outlook.com>
In-Reply-To
<CD310523-C253-4699-BCCA-C85981B9F855@jirutka.cz> (view parent)
Sender timestamp
1515109811
DKIM signature
missing
Download raw message
Jakub, thanks for getting back to me.

Yes, that is correct. Do you personally work for Alpine? Is this an official answer from Alpine?

Thanks,
-Rob

From: Jakub Jirutka [mailto:jakub@jirutka.cz]
Sent: Thursday, January 4, 2018 6:25 PM
To: Piskule, Robert <Robert.Piskule@jenzabar.com>
Cc: alpine-user@lists.alpinelinux.org
Subject: Re: [alpine-user] MELTDOWN + SPECTRE

Hi,

did I understand correctly that you run Alpine only inside a Docker container, not a host system? If so, then there's nothing Alpine can do against Meltdown or Spectre. The host system (its kernel) must be patched.

Jakub

On 4. Jan 2018, at 22:47, Piskule, Robert <Robert.Piskule@jenzabar.com<mailto:Robert.Piskule@jenzabar.com>> wrote:

I wanted to know if Alpine Linux is vulnerable to the recent Meltdown or Spectre attacks. Are there any patches? If running from within Docker, is there anything I need to do?

Thanks,
-Rob
Jakub Jirutka <jakub@jirutka.cz>
Details
Message ID
<CD310523-C253-4699-BCCA-C85981B9F855@jirutka.cz>
In-Reply-To
<DM5PR0601MB3592503AFBB5DD94351474BCF11F0@DM5PR0601MB3592.namprd06.prod.outlook.com> (view parent)
Sender timestamp
1515108318
DKIM signature
missing
Download raw message
Hi,

did I understand correctly that you run Alpine only inside a Docker container, not a host system? If so, then there’s nothing Alpine can do against Meltdown or Spectre. The host system (its kernel) must be patched.

Jakub

> On 4. Jan 2018, at 22:47, Piskule, Robert <Robert.Piskule@jenzabar.com> wrote:
> 
> I wanted to know if Alpine Linux is vulnerable to the recent Meltdown or Spectre attacks. Are there any patches? If running from within Docker, is there anything I need to do?
>  
> Thanks,
> -Rob
admin@extremeshok.com <admin@extremeshok.com>
Details
Message ID
<D2CA613B-0BEB-4C6E-AE6A-C950E65FE4E6@extremeshok.com>
In-Reply-To
<DM5PR0601MB3592BBA11CC53DA767B75B67F11F0@DM5PR0601MB3592.namprd06.prod.outlook.com> (view parent)
Sender timestamp
1515109869
DKIM signature
missing
Download raw message
The patch against Meltdown is kernel only. Docker containers run within the kernel of the host system. This means the resistance against Meltdown depends on the host kernel only. In other words: you don't need patches against Meltdown in the docker image and you cannot patch against Meltdown in the docker image.

_________________ eXtremeSHOK.com _________________

> On 05 Jan 2018, at 01:50, Piskule, Robert <Robert.Piskule@jenzabar.com> wrote:
> 
> Jakub, thanks for getting back to me.
>  
> Yes, that is correct. Do you personally work for Alpine? Is this an official answer from Alpine?
>  
> Thanks,
> -Rob
>  
> From: Jakub Jirutka [mailto:jakub@jirutka.cz] 
> Sent: Thursday, January 4, 2018 6:25 PM
> To: Piskule, Robert <Robert.Piskule@jenzabar.com>
> Cc: alpine-user@lists.alpinelinux.org
> Subject: Re: [alpine-user] MELTDOWN + SPECTRE
>  
> Hi,
>  
> did I understand correctly that you run Alpine only inside a Docker container, not a host system? If so, then there’s nothing Alpine can do against Meltdown or Spectre. The host system (its kernel) must be patched.
>  
> Jakub
>  
> On 4. Jan 2018, at 22:47, Piskule, Robert <Robert.Piskule@jenzabar.com> wrote:
>  
> I wanted to know if Alpine Linux is vulnerable to the recent Meltdown or Spectre attacks. Are there any patches? If running from within Docker, is there anything I need to do?
>  
> Thanks,
> -Rob
>  
Reply to thread Export thread (mbox)