|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
-
Google’s JavaScript team: Spectre mitigation doomed to failure
That isn’t exactly what they said, but it’s pretty close. Here’s what they do say:
A year with Spectre… When it was shown that JavaScript could be used to mount Spectre attacks, the V8 team became involved in tackling the problem… offensive research [from the white and gray hats] advanced much faster than our defensive research, and we quickly discovered that software mitigation of all possible leaks due to Spectre was infeasible… the engineering effort diverted to combating Spectre was disproportionate to its threat level… the increasingly complicated mitigations that we designed and implemented carried significant complexity, which is technical debt and might actually increase the attack surface, and performance overheads… We still know of no attacks in the wild, outside of the curious tinkerers and professional researchers developing proof of concept gadgets
Make no mistake, Meltdown and Spectre could become nightmares. At some point in the far future. For now, don’t worry about it, OK?
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Slow Down in Windows 10 performance after March 2025 updates ??
by 1 hour, 17 minutes ago
-
Mail from certain domains not delivered to my outlook.com address
by 3 hours, 43 minutes ago
-
Is data that is in OneDrive also taking up space on my computer?
by 11 hours, 23 minutes ago
-
Nvidia just fixed an AMD Linux bug
by 1 day, 5 hours ago
-
50 years and counting
by 3 hours, 1 minute ago
-
Fix Bluetooth Device Failed to Delete in Windows Settings
by 12 hours, 21 minutes ago
-
Licensing and pricing updates for on-premises server products coming July 2025
by 1 day, 16 hours ago
-
Edge : Deprecating window.external.getHostEnvironmentValue()
by 1 day, 16 hours ago
-
Rethinking Extension Data Consent: Clarity, Consistency, and Control
by 1 day, 16 hours ago
-
OneNote and MS Word 365
by 1 day, 18 hours ago
-
Ultimate Mac Buyers Guide 2025: Which Mac is Right For You?
by 1 day, 18 hours ago
-
Intel Unison support ends on Windows 11 in June
by 1 day, 19 hours ago
-
April 2025 — still issues with AMD + 24H2
by 1 day, 19 hours ago
-
Windows 11 Insider Preview build 26200.5518 released to DEV
by 2 days, 6 hours ago
-
Windows 11 Insider Preview build 26120.3671 (24H2) released to BETA
by 2 days, 6 hours ago
-
Forcing(or trying to) save Local Documents to OneDrive
by 2 days, 15 hours ago
-
Hotpatch for Windows client now available (Enterprise)
by 2 days, 3 hours ago
-
MS-DEFCON 2: Seven months and counting
by 1 day, 4 hours ago
-
My 3 monitors go black & then the Taskbar is moved to center monitor
by 3 days ago
-
Apple backports fixes
by 2 days, 7 hours ago
-
Win 11 24H2 will not install
by 1 day, 4 hours ago
-
Advice to convert MBR to GPT and install Windows 11 Pro on unsupported PC
by 36 seconds ago
-
Photos from iPhone to Win 10 duplicating/reformatting to .mov
by 1 day, 13 hours ago
-
Thunderbird in trouble. Here comes Thundermail
by 59 minutes ago
-
Get back ” Open With” in context menus
by 3 days, 15 hours ago
-
Many AMD Ryzen 9800X3D on ASRock have died
by 2 days, 7 hours ago
-
simple general stupid question
by 3 days, 13 hours ago
-
April 2025 Office non-Security updates
by 4 days, 6 hours ago
-
Microsoft wants to hear from you
by 1 day, 21 hours ago
-
Windows 11 Insider Preview Build 22635.5160 (23H2) released to BETA
by 4 days, 9 hours ago
Remembering Woody
