Oracle Linux: Selectively Disable Speculative Execution Mitigations
(Doc ID 2471704.1)
Last updated on APRIL 24, 2020
Linux OS - Version Oracle Linux 7.2 with Unbreakable Enterprise Kernel [4.1.12] and later Linux x86 Linux x86-64
This document describes circumstances under which system administrators may choose to make a risk-based decision to disable security mitigations for vulnerabilities which exploit speculative execution side-channel attacks (e.g. Spectre, Meltdown, L1TF) in order to improve system performance at a cost of increased exposure to attacks by local users or locally executing code.
Special consideration is given to Intel Skylake (SKL) family processors. Note that Oracle Linux systems default to enabling all mitigations for speculative execution side-channel vulnerabilities.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!