Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

MileSan: RTL Sanitizer Uncovers 19 New CPU Vulnerabilities

2025-09-09

Researchers introduce MileSan, an RTL sanitizer that detects arbitrary exploitable information leakage by comparing architectural and microarchitectural information flows. Paired with the RandOS fuzzer, MileSan found 19 new vulnerabilities (13 assigned CVEs) across 5 RISC-V CPUs. Addressing the overfitting issues of existing fuzzers, MileSan offers a novel approach to enhancing CPU security by identifying exploitable microarchitectural leakage without assumptions about the leakage path or triggering programs.

Read more
(comsec.ethz.ch)
Hardware information leakage microarchitectural security

Critical Intel CPU Flaw Bypasses Spectre-BTI Mitigations: Branch Privilege Injection (CVE-2024-45332)

2025-05-13

Researchers have discovered a critical vulnerability in Intel CPUs, dubbed Branch Privilege Injection (CVE-2024-45332), that bypasses hardware mitigations against Spectre-BTI attacks implemented over the past six years. Exploiting asynchronous branch predictor updates and insufficient synchronization during privilege switches, the flaw allows attackers to leak arbitrary memory at 5.6KiB/s. Intel has released a microcode update to address this, but it incurs a performance overhead of up to 2.7%. The vulnerability affects all Intel processors since the 9th generation (Coffee Lake Refresh).

Read more
(comsec.ethz.ch)
Tech