New Intel CPU vulnerability found, no new mitigations deliberate for “Indirector”

[ad_1]

In short: {Hardware} vulnerabilities like Spectre, Meltdown, and Downfall have dogged Intel processors for years. A newly uncovered variant of Spectre poses an analogous menace, however Intel and the researchers behind the invention imagine that strengthening present safety measures ought to adequately guard in opposition to the issue.

Lately revealed analysis has uncovered a safety flaw affecting twelfth, thirteenth, and 14th-generation Intel processors. Much like Spectre, Meltdown, and Downfall, it might trigger the processors to leak delicate data.

Researchers from the College of California San Diego found the assault, dubbed “Indirector.” It targets the oblique department indicator (IBI), a important element of recent Intel CPUs. As a Spectre V2 assault, it makes use of Department Goal Injection, which might alter the place processors ship essential data.

Moreover, the research reveals beforehand undisclosed details about the workings of the oblique department predictor, department goal buffer, and Intel safety measures like IBPB, IBRS, and STIBP. Reverse engineering has uncovered new vulnerabilities in these processes.

Utilizing a specialised instrument, an attacker might insert a multi-target path path into the IBP, probably exposing delicate information. One other technique can eject the goal consumer from the IBP and commit a BTB injection assault with an analogous end result.

Extra aggressive IBPB implementation might shield in opposition to the flaw however could introduce vital efficiency penalties. The researchers additionally counsel that Intel tighten its safety in different areas in future designs.

Intel informed Tom’s {Hardware} that its present countermeasures, akin to IBRS, eIBRS, and BHI, are efficient in opposition to Indirector, so it is not going to problem additional mitigations. Intel’s web site hosts detailed explanations of those techniques. The researchers plan to disclose extra data on the August USENIX Safety Symposium.

With the invention of Indirector, each fashionable Intel processor is now weak to a minimum of one recognized exploit. Spectre has impacted Blue Crew’s processors for over a decade, whereas Downfall impacts shopper CPUs from the sixth by means of eleventh era. In the meantime, Meltdown impacts Intel, AMD, and Arm techniques.

The researchers examined Indirector on Alder Lake and Raptor Lake processors, probably including to the problems plaguing the latter. For weeks, customers working CPU-intensive processes like video games and productiveness software program have encountered crashes on high-end thirteenth and 14th-gen Intel chips, and the corporate has but to discover a everlasting answer. Within the meantime, Intel instructed affected customers to undervolt their CPUs.

Whether or not Chipzilla can keep away from these or related points with upcoming generations like Arrow Lake and Panther Lake stays unclear.

[ad_2]

Leave a Reply

Your email address will not be published. Required fields are marked *