most routers don't take advantage of Linux's improved security features
Is this something that should be looked into for Vyos ?
abstract:
Security hardening features such as ASLR (Address Space Layout Randomization), DEP (Data Execution Prevention), RELRO (RELocation Read-Only), and stack guards have been found to be missing in a recent security audit of 28 popular home routers.
"The absence of these security features is inexcusable"
The features discussed in this report are easy to adopt, come with no downsides, and are standard practices in other market segments (such as desktop and mobile software)
Researchers detailed this MIPS Linux bug in more detail in a separate research paper available
here