Sometimes the cure is just as bad as the ailment. The two exploits Meltdown and Spectre have patches in place on my workstations and servers.
Others utilizing my distribution of operating system are reporting widespread crashes with the patches made available just this week. I have the same kernel patches — two of which arrived just this week — which operate fine and dandy. I'm not really noticing much in the way of performance deficit ...
But the boxes don't get hit with any traffic that the processors can't handle, there are high bandwidth NICs attached to a pipe that won't quit and the CPUs have never utilized any virtual memory (of which there is an ample supply) nor is there evidence for anything other than the usual and dumbass hack attempts from people trying their hand against my countermeasures.
Based on everything I'm reading in the threads I think the fundamental difference between my patches and those which are failing lay in the absence of GUI on the servers.
I'm a command line interface type of guy and have always been at home at a prompt. I'm skipping a lot of exploit territory in the absence of binaries operating in 800x600 text mode with switched off GPU features up the yinyang.
However, I'm getting a few updates daily lately and we'll have to see how things go.