Techly NewsGet the app

Get the latest tech news

Branch Privilege Injection: Exploiting branch predictor race conditions


(CVE-2024-45332) brings back the full might of branch target injection attacks (Spectre-BTI) on Intel. Intel’s hardware mitigations against these types of attacks have held their ground for almost 6 years.

Branch predictor updates can still be in-flight when an affected processor switches privileges (e.g., user to kernel or guest to hypervisor) or performs an IBPB. We use the above insights to build an end-to-end Branch Privilege Injection attack that leaks arbitrary memory at 5.6KiB/s on an up-to-date Ubuntu 24.04 with all default mitigations enabled. The following video demonstrates how Branch Privilege Injection leaks arbitrary memory on an Intel Raptor Lake (13th gen) processor.

Get the Android app

Or read this on Hacker News

« TikTok launches TikTok AI Alive, a new image-to-video tool
PyPI Organizations (2023) »