X86: C:\Program Files (x86)\Microsoft Visual Studio 14.0\VC\lib\spectre You should also install the Spectre-mitigated VC++ libraries (one update per architecture), and then manually link to them. When you install the tool set update, you can enable /Qspectre manually from the C/C++ command-line options. This update does not replace any previously released update.
You may have to restart the computer after you apply this update. To apply this update, you must have Update 3 for Visual Studio 2015 installed. Qspectre and the libraries provide mitigation assistance for Spectre Variant 1 - CVE-2017-5753. If you are a developer whose code operates on data that crosses a trust boundary, you should consider installing these updates and recompiling your code by having the /Qspectre switch enabled, and then linking to the Spectre-mitigated libraries that are provided.
For more information, see this Visual C++ Team Blog article and security advisory 180002. Spectre is a new class of hardware vulnerabilities that involve speculative execution side channels that may be used to disclose information about the program being attacked.
0 kommentar(er)
