> On the positive side, the flaw is very difficult to exploit in a practical set... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

noncoml on Jan 4, 2018 | parent | context | favorite | on: Reading privileged memory with a side-channel

> On the positive side, the flaw is very difficult to exploit in a practical setting.

Is it?

"As a proof-of-concept, JavaScript code was written that, when run in the Google Chrome browser, allows JavaScript to read private memory from the process in which it runs"

martinald on Jan 4, 2018 [–]

So is this fixable or not?

noncoml on Jan 4, 2018 | [–]

Not really.

See: https://blog.mozilla.org/security/2018/01/03/mitigations-lan...

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact