By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
World of SoftwareWorld of SoftwareWorld of Software
  • News
  • Software
  • Mobile
  • Computing
  • Gaming
  • Videos
  • More
    • Gadget
    • Web Stories
    • Trending
    • Press Release
Search
  • Privacy
  • Terms
  • Advertise
  • Contact
Copyright © All Rights Reserved. World of Software.
Reading: Attack Vector Controls Land In Linux 6.17 To Better Control CPU Security Mitigations
Share
Sign In
Notification Show More
Font ResizerAa
World of SoftwareWorld of Software
Font ResizerAa
  • Software
  • Mobile
  • Computing
  • Gadget
  • Gaming
  • Videos
Search
  • News
  • Software
  • Mobile
  • Computing
  • Gaming
  • Videos
  • More
    • Gadget
    • Web Stories
    • Trending
    • Press Release
Have an existing account? Sign In
Follow US
  • Privacy
  • Terms
  • Advertise
  • Contact
Copyright © All Rights Reserved. World of Software.
World of Software > Computing > Attack Vector Controls Land In Linux 6.17 To Better Control CPU Security Mitigations
Computing

Attack Vector Controls Land In Linux 6.17 To Better Control CPU Security Mitigations

News Room
Last updated: 2025/08/01 at 12:30 PM
News Room Published 1 August 2025
Share
SHARE

The Attack Vector Controls work is now in Linux 6.17 for those new tuning knobs worked on by AMD engineer David Kaplan to make it more straight-forward for Linux server administrators and power users to more easily select the CPU security mitigations relevant to their system(s) and intended workloads.

The x86/bugs merge request landed this week and with it comes an untangling of the Retbleed code from the ITS Training Solo mitigation on Intel CPUs, in order to allow enabling ITS stuffing separate from the Retbleed mitigation. The Speculative Return Stack Overflow (SRSO) mitigation code was also simplified. Most notable though was getting the rest of the Attack Vector Controls code merged.

AMD and Intel CPUs

Attack Vector Controls makes it easier for everyone from Linux power users to server fleet administrators to manage the increasingly confusing mess of different CPU security mitigations. Rather than needing to manage CPU security mitigations on an individual basis and keeping up with each new mitigation introduced moving forward, Attack Vector Controls classifies them into different categories that users can opt-in / opt-out of particular categories of mitigations. The hope is this will help users stay protected to mitigations relevant to them but otherwise restoring performance by disabling mitigations not relevant to their use.

The Attack Vector Controls are categorized currently into user-to-kernel, user-to-user, guest-to-host, guest-to-guest, and cross-thread vulnerabilities. From there with the mitigations= kernel boot parameter different combinations can be passed for no_user_kernel, no_user_user, no_guest_host, no_guest_guest, and no_cross_thread options for disabling the respective classes of mitigations. Multiple classes can be disabled via comma separation.

More details on the Attack Vector Controls tuning available with Linux 6.17 can be found via the kernel documentation.

Sign Up For Daily Newsletter

Be keep up! Get the latest breaking news delivered straight to your inbox.
By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
Share This Article
Facebook Twitter Email Print
Share
What do you think?
Love0
Sad0
Happy0
Sleepy0
Angry0
Dead0
Wink0
Previous Article Nintendo Increases Original Switch Prices by Up to 15%
Next Article And Just Like That ends after three seasons as showrunner shares ‘final’ reason
Leave a comment

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Stay Connected

248.1k Like
69.1k Follow
134k Pin
54.3k Follow

Latest News

‘Magic number’ on your thermostat that brings your energy bills down
News
Japanes band Kroi used 40 iPhones to film new music video
News
Today's NYT Mini Crossword Answers for Aug. 2 – CNET
News
Months After Freezing Wireless Rates But Not Fees, Verizon Slips in a Fee Increase
News

You Might also Like

Computing

Steam Survey For July Shows Linux Use Approaching 3%

2 Min Read
Computing

AI Is Learning to Ask ‘Why’ and It Changes Everything | HackerNoon

1 Min Read
Computing

The HackerNoon Newsletter: How I Set Up a Cowrie Honeypot to Capture Real SSH Attacks (8/1/2025) | HackerNoon

2 Min Read
Computing

Meta’s AI Boss Just Called LLMs ‘Simplistic’ — Here’s What He’s Building Instead | HackerNoon

15 Min Read
//

World of Software is your one-stop website for the latest tech news and updates, follow us now to get the news that matters to you.

Quick Link

  • Privacy Policy
  • Terms of use
  • Advertise
  • Contact

Topics

  • Computing
  • Software
  • Press Release
  • Trending

Sign Up for Our Newsletter

Subscribe to our newsletter to get our newest articles instantly!

World of SoftwareWorld of Software
Follow US
Copyright © All Rights Reserved. World of Software.
Welcome Back!

Sign in to your account

Lost your password?