Meltdown & Spectre – Does patching the guest kernel of an unpatched hypervisor prevent cross-VM memory leaks?
From what I understand of the vulnerabilities, no – the speculative caching attacks bypass all of the CPU’s protections against a process grabbing memory from whatever arbitrary address. I believe this would include the neighbor VMs (even those patched to protect against the attack themselves) as well as the hypervisor’s kernel memory space – but … Read more