So, I am sitting here while the whole world freaks out about Specter and Meltdown.  Are these bad?  Absolutely.  But running around and patching all the things before evaluating what the patches are doing doing and if they are going to impact systems is not the right move.  Intel in my opinion is fumbling the entire Meltdown issue.  However, Specter still exists and it is not going anywhere folks.

The CVEs that are tied to Meltdown and Specter are CVE-2017-5752, CVE-2017-5715, and CVE-2017-5754.

For right now the stance I am taking in my home environment is to accept Windows and Linux updates as they come.  If and when Firmware updates are published for my homelab servers (old 10 series Dell servers) I will evaluate weather I will be updating.  Same goes with any of my Hypervisors.

Their are already POCs out for Meltdown and Specter, so, it is a real world threat.

I guess I really don’t know what to say other than read, research and understand the implications that Meltdown and Specter will have on your work and home environment.  Specter and Meltdown are going to be around for decades and we are going to need to patch when possible and harden when not.