News has certainly been coming thick and fast with regards to how "speculative execution side-channel attacks" can be leveraged on systems built with modern processors and operating systems. While industry partners had been working on developing the corresponding mitigations for the critical hardware-based flaw, which could not be delivered as a microcode update, the issue was substantial enough to prompt Microsoft to release the patch yesterday, ahead of next week's scheduled Patch Tuesday.
With respect to these changes, John Hazen, Principal PM Lead, Microsoft Edge said that:
"These two changes substantially increase the difficulty of successfully inferring the content of the CPU cache from a browser process.
We will continue to evaluate the impact of the CPU vulnerabilities published today, and introduce additional mitigations accordingly in future servicing releases. We will re-evaluate SharedArrayBuffer for a future release once we are confident it cannot be used as part of a successful attack."
The corresponding security updates have been released by the company for the Windows 10 Fall Creators Update (Version 1709), Creators Update (Version 1703), and the original version of Windows 10 (Version 1507).