https://source.android.com/security/bulletin/2018-01-01
CVE-2017-14497
CVE-2017-13215
CVE-2017-11473
CVE-2017-13222
CVE-2017-13218
CVE-2017-14140
CVE-2017-15537
arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry

Although CONFIG_UNMAP_KERNEL_AT_EL0 does make KASLR more robust, it's
actually more useful as a mitigation against speculation attacks that
can leak arbitrary kernel data to userspace through speculation.

Reword the Kconfig help message to reflect this, and make the option
depend on EXPERT so that it is on by default for the majority of users.

Signed-off-by: Will Deacon <will.deacon@arm.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@google.com>
1 file changed