1. Securing Systems and Attached Devices in Oracle Solaris 11.4
  2. Protecting Oracle Solaris System Integrity
  3. Protecting Platforms Against Speculative Execution Attacks

Protecting Platforms Against Speculative Execution Attacks

The Security Extensions Framework also provides platform-specific security extensions that protect Oracle Solaris from various speculative execution vulnerabilities. Some of these security extensions are always enabled, some can be enabled or disabled, and a few can be managed per process, similar to the extensions in the preceding section. You use the sxadm command to manage the extensions that can be configured. See the sxadm(8) man page.

Note:

If you enable or disable mitigations that are set at boot time, you must reboot the system for the changes to take effect.