Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-08-01 13:46:04 -04:00
Code Issues Projects Releases Packages Wiki Activity

Update control

Browse source
This commit is contained in:
madaidan 2020-02-12 18:43:19 +00:00 committed by GitHub
parent 700c7ed908
commit 2796c2dd00
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

7
debian/control vendored
View file

@ -66,12 +66,7 @@ Description: enhances misc security settings
* Kernel Page Table Isolation is enabled to mitigate Meltdown and increase
KASLR effectiveness.
.
* SMT is disabled as it can be used to exploit the MDS and other
vulnerabilities.
.
* All mitigations for the MDS vulnerability are enabled.
.
* Enables mitigations for the L1TF (L1 Terminal Fault) vulnerability.
* Enables all mitigations for CPU vulnerabilities and disables SMT.
.
* A systemd service clears System.map on boot as these contain kernel symbols
that could be useful to an attacker.