If Whonix compiles it’s own
linux-hardened then we could be looking at a situation like the Arch Linux package
linux-hardened. According to one of the maintainers @madaidan he recommend against using it due fact the update time difference and patches have to be reworked often in order to work in newer Linux Version and that can take a while.
Any more information regarding this @patrick ?