[$] A "runtime guard" for the kernel

While updating kernels frequently is generally considered a security bestpractice, there are many installations that are unable to do so for avariety of reasons. That means running with some number of knownvulnerabilities (along with an unknown number of unknown vulnerabilities, ofcourse), so some way to detect and stop exploits for those flaws may bedesired. That is exactly what the Linux Kernel Runtime Guard (LKRG)is meant to do.