I’m sure most people have heard about these kernel vulnerabilities by now. If not, have a read
I have uploaded ‘meltdown’ secure kernels for 4.14.11 for 64 bit to antiX stretch/testing and sid repos. Patching the default 4.10.5 kernel is not progressing very well since the patches are very complex and there are no existing patches for the 4.10 series (yet).
So, at this moment in time, here are your choices.
1. Do nothing
2. Wait for the 4.10.5 kernel gets patched (no idea when that will be)
3. Use an existing patched kernel from Debian stretch (4.9 series)
4. Use the 4.14.11 antiX patched kernel.