Capacity
R15
28
Rule
Severity: Low
Do not allow ACPI methods to be inserted/replaced at run time
28
Rule
Severity: Low
Disable the 32-bit vDSO
28
Rule
Severity: Low
Disable kernel debugfs
11
Rule
Severity: Medium
Warn on W+X mappings found at boot
28
Rule
Severity: Low
Disable /dev/kmem virtual device support
11
Rule
Severity: Medium
Harden common str/mem functions against buffer overflows
11
Rule
Severity: High
Harden memory copies between kernel and userspace
11
Rule
Severity: High
Do not allow usercopy whitelist violations to fallback to object size
11
Rule
Severity: Medium
Disable vsyscall emulation
11
Rule
Severity: Medium
Disable vsyscall mapping
9
Rule
Severity: Medium
Disable vsyscall emulate execution only
28
Rule
Severity: Low
Disable support for /proc/kkcore
11
Rule
Severity: Medium
Perform full reference count validation
28
Rule
Severity: Medium
Avoid speculative indirect branches in kernel
11
Rule
Severity: Medium
Detect stack corruption on calls to schedule()
28
Rule
Severity: Medium
Restrict unprivileged access to the kernel syslog
11
Rule
Severity: Medium
Stack Protector buffer overlow detection
11
Rule
Severity: Medium
Strong Stack Protector
11
Rule
Severity: Medium
Make the kernel text and rodata read-only
11
Rule
Severity: Medium
User a virtually-mapped stack
28
Rule
Severity: Low
Disable x86 vsyscall emulation
Patternfly
PatternFly elements
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Modules