On Sun, Jan 7, 2018 at 8:57 PM, Masataka Ohta < mohta@necom830.hpcl.titech.ac.jp> wrote:
William Herrin wrote:
Meltdown and Spectre are privilege escalation flaws. If you can induce the physical hardware to run arbitrary code you provide at an unprivileged level, they can be used to extract information from other processes or virtual machine containers running at different (higher) privilege levels.
So, spectre should be fatal to cloud business.
Doubt it. But they are the ones who'll have to scramble fastest to patch. It's also really giving browser devs a bad day since it provides yet another escalation out of the javascript sandbox. -Bill -- William Herrin ................ herrin@dirtside.com bill@herrin.us Dirtside Systems ......... Web: <http://www.dirtside.com/>