Researchers at the University of California have uncovered a new security vulnerability in modern Intel processors, specifically targeting the Raptor Lake and Alder Lake generations. This vulnerability, known as “Indirector,” exploits the Indirect Branch Predictor (IBP) component to carry out precise branch target injection attacks, bypassing existing defenses and potentially compromising a large number of systems.
Since the initial discovery of Branch Target Injection (BTI) attacks in 2018 with Spectre and Meltdown, experts have focused on the Branch Target Buffer (BTB) and Return Stack Buffer (RSB). However, the IBP has often been overlooked and is now seen as a critical factor in identifying new attack vectors.
The researchers communicated their findings to Intel in February 2024, leading to Intel informing other affected hardware and software vendors about the issues. Raptor Lake processors, which are the 13th and 14th Gen CPUs from Intel, were launched in 2022 as successors to the Alder Lake processors, representing the chipmaker’s 12th Gen CPUs.
In summary, the researchers have identified a new vulnerability in modern Intel processors that could potentially lead to sophisticated attacks on systems using Raptor Lake and Alder Lake CPUs. This vulnerability leverages the IBP to carry out precise branch target injection attacks, bypassing existing defenses and putting systems at risk. Intel has been made aware of the issue and has informed other vendors about the security findings.
Article Source
https://manilastandard.net/news/314466527/high-end-intel-cpus-targeted-by-indirector-bti-attack.html