Open Menu
AllLocalCommunitiesAbout
lotide
AllLocalCommunitiesAbout
Login

AMD confirms security vulnerability in every Zen 1 to Zen 5 processor

⁨38⁩ ⁨likes⁩

Submitted ⁨⁨1⁩ ⁨month⁩ ago⁩ by ⁨cm0002@lemmy.world⁩ to ⁨cybersecurity@infosec.pub⁩

https://www.tweaktown.com/news/104554/amd-confirms-security-vulnerability-in-every-zen-1-to-5-processor/index.html

source

Comments

Sort:hotnewtop
  • InnerScientist@lemmy.world ⁨1⁩ ⁨month⁩ ago

    EntrySign is a vulnerability that enables attackers with ring 0 or kernel-level access to bypass safeguards.

    So almost no security impact and no performance change?

    source
    • kata1yst@sh.itjust.works ⁨1⁩ ⁨month⁩ ago

      no performance change

      You must be new here.

      Joking. But seriously, on Linux you can bypass mitigations with basically no security impact if you’re not a cloud provider and get a significant performance boost.

      source
      • InnerScientist@lemmy.world ⁨1⁩ ⁨month⁩ ago

        weakness in signature verification algorithm that could allow an administrator privileged attacker to load arbitrary microcode patches

        I don’t think this will affect performance unless you depend on having to quickly update the CPU microcode multiple times a second.

        source
        • -> View More Comments
  • asbestos@lemmy.world ⁨1⁩ ⁨month⁩ ago

    How do I update through linux?

    source
    • semperverus@lemmy.world ⁨1⁩ ⁨month⁩ ago

      You update through UEFI

      source
  • samsi@lemmy.world ⁨1⁩ ⁨month⁩ ago

    Sounds terrible, but fortunately an update is available

    source