From 0bd4bcecbee7cf84f76892a1ec3b6178bee8a03f Mon Sep 17 00:00:00 2001
From: inference <admin@inferencium.net>
Date: Sun, 24 Mar 2024 04:42:15 +0000
Subject: [PATCH] Further document GrapheneOS memory protections

Further detail hardened_malloc memory protections, and document MTE for
supported devices.
---
 about.xhtml | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/about.xhtml b/about.xhtml
index 2f261e5..16d520e 100644
--- a/about.xhtml
+++ b/about.xhtml
@@ -1,7 +1,7 @@
 <!DOCTYPE html>
 
 <!-- Inferencium - Website - About -->
-<!-- Version: 10.2.0-alpha.9 -->
+<!-- Version: 10.2.0-alpha.10 -->
 
 <!-- Copyright 2022 Jake Winters -->
 <!-- SPDX-License-Identifier: BSD-3-Clause -->
@@ -653,7 +653,11 @@
 														<a href="https://github.com/GrapheneOS/kernel_gs-gs101/">hardened kernel</a>,
 														hardened memory allocator
 														(<a href="https://github.com/GrapheneOS/hardened_malloc/">hardened_malloc</a>)
-														to protect against common memory corruption vulnerabilities,
+														to protect against common heap memory corruption vulnerabilities
+														and reduce the lifetime of data in memory due to
+														zero-initialising memory on it being freed, Arm's Memory Tagging
+														Extension to provide protection against heap memory bugs such as
+														use-after-free and buffer overflow (supported devices only),
 														<a href="https://github.com/GrapheneOS/platform_bionic/">hardened Bionic standard C library</a>,
 														<a href="https://github.com/GrapheneOS/platform_system_sepolicy/">stricter SELinux policies</a>,
 														and local and remote hardware-backed attestation