Bug 12371

Summary: CONFIG_PAGE_TABLE_ISOLATION is enabled on x86_64 only
Product: IPFire Reporter: Peter Müller <peter.mueller>
Component: ---Assignee: Assigned to nobody - feel free to grab it and work on it <nobody>
Status: CLOSED NOTABUG QA Contact:
Severity: Security    
Priority: Will affect an average number of users    
Version: 2   
Hardware: unspecified   
OS: All   
Bug Depends on:    
Bug Blocks: 12361    

Description Peter Müller 2020-04-14 15:33:27 UTC 
Quote from https://capsule8.com/blog/kernel-configuration-glossary/:

> Significance: High
> 
> This feature reduces the number of hardware side channels by ensuring that
> the majority of kernel addresses are not mapped into userspace.
Comment 1 Peter Müller 2020-04-14 17:12:04 UTC 
This is implemented on x86_64 only. A patch set for i?86 is available, but did not make it into the kernel.