On 9-1-2018 12:40, Dimitry Sibiryakov wrote:
09.01.2018 12:36, Mark Rotteveel wrote:
it can be exploited by any code running local on your machine. So
anything on that machine that could have a remote code execution
vulnerability, or just a plain malicious update, could then exploit it.
Anything that can have such vulnerability don't need tricky meltdown
techniques to exploit database on local drive.
Sure, but by that logic you wouldn't need to defend against anything but
the simplest security vulnerabilities. The problem with meltdown and
spectre is that it could potentially allow you to gather information
that the exploited process would normally not be able to access.
Mark
--
Mark Rotteveel
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
Firebird-Devel mailing list, web interface at
https://lists.sourceforge.net/lists/listinfo/firebird-devel
