Microsoft rolls out Google's Retpoline Spectre mitigation to Windows 10 users

Microsoft has rolled out today cumulative update KB4482887, an update that includes an important security fix, a new mitigation for the Spectre v2 CPU vulnerability.

This new mitigation is based on a coding technique called Retpoline, developed by Google engineers.

Code written using Retpoline protections are safe from Spectre v2 (CVE-2017-5715), a vulnerability in modern processors that allows attackers to break the isolation between different applications and steal data from locally running processes.

Google has already deployed Retpoline on its Linux-based servers and also contributed patches to the Linux kernel last year. Throughout 2018, Retpoline slowly made its way down major Linux distros such as Red Hat, SUSE, Ubuntu, and Oracle Linux 6 and 7.

Microsoft began working on integrating Retpoline into the Windows kernel last year, and initially, the company planned to deploy the Retpoline mitigations with the next version of Windows 10, 19H1, which is due out this spring.

At the time, some Windows kernel experts, such as CrowdStrike researcher Alex Ionescu, claimed the mitigations would have been compatible with the Windows 10 October 2018 Update, if Microsoft wanted to ship them.

But in an update published today on the Microsoft Community page dedicated to the company’s work on mitigating Spectre v2, Windows Kernel Team development manager Mehmet Iyigun said things aren’t that simple.

“Due to the complexity of the implementation and changes involved, we are only enabling Retpoline performance benefits for Windows 10, version 1809 and later releases,” he said. “Over the coming months, we will enable Retpoline as part of phased rollout via cloud configuration.”

When Google announced Retpoline last year, the search giant boasted about Retpoline’s “negligible impact on performance,” citing numbers of up to 1.5 percent performance impact on Google Cloud servers.

These numbers war far smaller than the 10-20 percent impact that most other Linux distros were reporting at the time, distros that relied on a mixture of OS updates and CPU microcode updates to handle Spectre v2 mitigations, considered the trickier of the original Meltdown and Spectre vulnerabilities revealed in January 2018.

Windows Update Retpoline
Image: ZDNet

Related cybersecurity news coverage:

About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews

Automated trading with HaasBot Crypto Trading Bots

Blockchain/Cryptocurrency Questions and Answers

What Are E-stablecoins And How Do They Operate?
What Are E-Stablecoins And How Do They Operate?
August 11, 2022
How to Choose a Legit Crypto Casino?
August 5, 2022
Spend Crypto
5 Ways to Spend Crypto
August 2, 2022
What Is A DAO LLC?
What Is A DAO LLC?
August 2, 2022
Can Running A Lightning Node Earn You Passive Income?
Can Running A Lightning Node Earn You Passive Income?
July 5, 2022

CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin23,982 0.41 % 0.26 % 0.67 %
Ethereum1,893.1 1.04 % 0.08 % 6.61 %
Tether1.001 0.09 % 0.22 % 0.04 %
USD Coin1.000 0.44 % 0.25 % 0.18 %
BNB316.49 0.40 % 0.18 % 2.60 %
Cardano0.5585 1.79 % 0.36 % 3.91 %
XRP0.3752 0.74 % 1.42 % 1.12 %
Binance USD1.001 0.04 % 0.07 % 0.11 %
Solana42.12 0.56 % 2.22 % 3.81 %
Dogecoin0.08716 0.76 % 14.86 % 24.13 %

Bitcoin (BTC) $ 24,012.00
Ethereum (ETH) $ 1,899.26
Tether (USDT) $ 1.00
USD Coin (USDC) $ 1.00
BNB (BNB) $ 316.51
Cardano (ADA) $ 0.560575
XRP (XRP) $ 0.375819
Binance USD (BUSD) $ 0.999611
Solana (SOL) $ 43.91
Dogecoin (DOGE) $ 0.08621