Intel's Linear Address Space Separation (LASS), a CPU security feature that mitigates side-channel attacks exploiting speculative access across user/kernel space boundaries, is now fully enabled in Linux 7.1. Initially upstreamed in Linux 6.19, remaining corner cases around EFI services and vsyscall handling have been resolved. LASS is supported on Xeon 6 server processors and Lunar Lake and newer client processors. The x86/cpu pull merged into Linux 7.1 Git formally completes the enablement, also deferring LASS activation until user-space is brought up.
Sort: