PhantomFetch: Obfuscating Loads against Prefetcher Side-Channel Attacks

The IP-stride prefetcher has recently been exploited to leak secrets through side-channel attacks. It, however, cannot be simply disabled for security with prefetching speedup as a sacrifice. The state-of-the-art defense tries to retain the prefetching effect by hardware modification. In this...

Prefetcher Side Channel Attack

Revisions Revision Date| Description ---|--- 2025-10-17| Initial publication...

PAGE PREFETCHER ATTACK

AMD ID: AMD-SB-7040 Potential Impact: N/A Severity: N/A Summary Researchers have disclosed to AMD a potential exploit, the page prefetcher attack PPA, a prefetcher-based side-channel attack. AMD has evaluated the paper and does not believe there are any new security implications...

New "GoFetch" Vulnerability in Apple M-Series Chips Leaks Secret Encryption Keys

A new security shortcoming discovered in Apple M-series chips could be exploited to extract secret keys used during cryptographic operations. Dubbed GoFetch, the vulnerability relates to a microarchitectural side-channel attack that takes advantage of a feature known as data memory-dependent...

ch.j3t:zio-prefetcher_2.13 (=0.8.0-RC6), com.47deg:energy-monitor-persistence-app_2.13 (=0.2.0) +202 more potentially affected by CVE-2023-22465 via org.http4s:http4s-core_2.13 (>=0.23.0 <=0.23.16)

org.http4s:http4s-core2.13 MAVEN version =0.23.0, =0.29.1, =0.31.0, =0.5.0, =0.9.4, =0.1-0b4f7b6, =0.1-e4b7179 - com.avast.cloud:datadog4s-http4s2.13 =0.31.0 - com.avast.cloud:datadog4s2.13 =0.31.0 - com.banno:vault4s2.13 =9.0.0 and more Source cves: CVE-2023-22465 Source advisory:...

CVE-2017-5217

Installing a zero-permission Android application on certain Samsung Android devices with KK4.4, L5.0/5.1, and M6.0 software can continually crash the systemserver process in the Android OS. The zero-permission app will create an active install session for a separate app that it has embedded withi...