There should really be a law against this sort of thing.
Security researchers are needed and they provide a valuable service to the world, but please don't get ahead of yourselfs. In recent months there were many instances where people just disclosed vulnerabilities without making sure there are fixed available. This is wrong and legally should be equivalent to hacking.
In the past, when vulnerabilities with no fixes were disclosed were after months and months of trying to contact the developers of said software and patch it... Nowadays it seems everyone is eager to ride their 15 minutes of fame...SAD :)
The problem is that it's a staging kernel, not a full release. I've not been able to get it to boot on m3.large AWS instances, though it seems to work on xlarge.
I agree that everybody needs to follow responsible disclosure practices.
I think you are confusing two terms, braking the law and hacking. While hacking can be braking the law, most often it is not. Not all hackers are criminals.
echo 1 | sudo tee /proc/sys/kernel/unprivileged_bpf_disabled