Yeah, you’re right, it doesn’t work.
You’d rather have a memory-unsafe renderer with Site Isolation over a memory-safe one without it? That’s putting a *lot* of faith in your sandbox mechanisms.
-
-
I am not nearly so sure that I would take a renderer in which attackers can attack the sandbox and IPC mechanisms directly via RCE over a renderer that has potential speculative execution vulnerabilities but no RCE.
-
…given that we’ve seen a lot more sandbox escapes in the wild than we’ve seen Spectre exploits.
End of conversation
New conversation -
-
-
Just due to the amount of effort it would take?
- 3 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.