More Intel CPU security flaws revealed with Branch Privilege Injection

By Liam Dawe - 14 May 2025 at 1:55 pm UTC

We only just had the reveal of Training Solo from VUSec for Intel and Arm, and now we have another security flaw in Intel CPUs with Branch Privilege Injection.

This was detailed by COMSEC, the computer security group of the Department of Information Technology and Electrical Engineering (D-ITET) at ETH Zürich in their new research post.

Who is affected? They said "All intel processors since the 9th generation (Coffee Lake Refresh) are affected by Branch Privilege Injection. However, we have observed predictions bypassing the Indirect Branch Prediction Barrier (IBPB) on processors as far back as 7th generation (Kaby Lake)". And while their testing has been on Linux, it is a hardware issue so all systems will be affected by it.

Explaining it they said "Branch Privilege Injection (CVE-2024-45332) brings back the full might of branch target injection attacks (Spectre-BTI) on Intel. Intel’s hardware mitigations against these types of attacks have held their ground for almost 6 years. In our work, we demonstrate how these mitigations can be broken due to a race condition in Intel CPUs".

Their video example:

YouTube videos require cookies, you must accept their cookies to view. View cookie preferences.
Accept Cookies & Show Direct Link

As for updates to fix the problem, unfortunately it seems that will come with another performance cut "Intel has developed a microcode update for affected processors and provided us with one to evaluate on Alder Lake. We were able to verify that the microcode update stops our primitives that we use in the paper to detect the vulnerabilities. Our performance evaluation shows up to 2.7% overhead for the microcode mitigation on Alder Lake. We have also evaluated several potential alternative mitigation strategies in software with overheads between 1.6% (Coffee Lake Refresh) and 8.3% (Rocket lake). Please refer to our paper for more details."

Intel has since put up a security advisory on it.

Another time to keep an eye on system and BIOS updates.

AMD / Arm are not affected by this one.

Article taken from GamingOnLinux.com.

Tags: Security, Hardware, Intel, Misc

1 Likes

About the author - Liam Dawe

I am the owner of GamingOnLinux. After discovering Linux back in the days of Mandrake in 2003, I constantly checked on the progress of Linux until Ubuntu appeared on the scene and it helped me to really love it. You can reach me easily by emailing GamingOnLinux directly. You can also follow my personal adventures on Bluesky.
See more from me

Some you may have missed, popular articles from the last month:

Check out the demo for no brake no gain, a precision-driving game where skill outshines speed

First person puzzle-adventure metroidvania Memory's Reach looks great with Steam Deck support announced

Arcade-inspired rally-driving experience #DRIVE Rally 1.0 is out now

8BitDo Ultimate 2 is getting full Steam Input support for more buttons

All posts need to follow our rules. For users logged in: please hit the Report Flag icon on any post that breaks the rules or contains illegal / harmful content. Guest readers can email us for any issues.

1 comment

Linux_Rocks 2 hours ago

Intel is such a dumpster fire.

2 Likes

While you're here, please consider supporting GamingOnLinux on:

Reward Tiers: Patreon. Plain Donations:

PayPal.

This ensures all of our main content remains totally free for everyone! Patreon supporters can also remove all adverts and sponsors! Supporting us helps bring good, fresh content. Without your continued support, we simply could not continue!

You can find even more ways to support us on this dedicated page any time. If you already are, thank you!