Bug 12364

Summary: CONFIG_RANDOMIZE_MEMORY is enabled on x86_64 only
Product: IPFire Reporter: Peter Müller <peter.mueller>
Component: ---Assignee: Peter Müller <peter.mueller>
Status: CLOSED ERRATA QA Contact:
Severity: Security    
Priority: Will affect an average number of users CC: peter.mueller
Version: 2   
Hardware: unspecified   
OS: All   
Bug Depends on:    
Bug Blocks: 12361    

Description Peter Müller 2020-04-14 15:20:03 UTC 
Quote from https://capsule8.com/blog/kernel-configuration-glossary/:

> Significance: Critical
> 
> Randomizes the base virtual address of kernel memory sections (physical memory
> mapping vmalloc & vmemmap). This security feature makes exploits relying on
> predictable memory locations less reliable.
Comment 1 Peter Müller 2020-06-09 17:17:15 UTC 
https://patchwork.ipfire.org/patch/3171/
Comment 2 Peter Müller 2022-07-28 14:00:42 UTC 
Sigh, this one is not available for any other architecture than x86.