|
|
|
|
|
|
by devinl
3088 days ago
|
|
|
Chrome is listed as impacted due to javascript being able to read memory from outside the browser sandbox. "In addition to violating process isolation boundaries using native code, Spectre attacks can also be used to violate browser sandboxing, by mounting them via portable JavaScript code. We wrote a JavaScript program that successfully reads data from the address space of the browser process running it." - from the spectre paper |
|
|