AMD Quietly Lists 31 New CPU Vulnerabilities, Issues Patch Guidance

Panda · Jan 15, 2023

The vulnerabilities include three new variants for the consumer-geared Ryzen desktop PC, HEDT, Pro, and Mobile processors. One of the vulnerabilities is listed as high severity, while the other two are ranked as Medium or Low severity. These vulnerabilities can be exploited through either BIOS hacks or an attack on the AMD Secure Processor (ASP) bootloader.

The vulnerabilities span the Ryzen 2000-series Pinnacle Ridge desktop chips, along with the 2000- and 5000-series APU product lines that come with integrated graphics (Raven Ridge, Cezanne). In addition, AMD's Threadripper 2000- and 3000-series HEDT and Pro processors are also impacted, along with numerous Ryzen 2000-, 3000-, 5000-, 6000- and Athlon 3000-series mobile processors.

AMD Quietly Lists 31 New CPU Vulnerabilities, Issues Patch Guidance

Patch your Ryzen and EPYC systems.

www.tomshardware.com

captivating · Jan 15, 2023

Ty for this critical heads-up . From what I understand is I need to wait for the updated bios from my motherboard vendor as I have ryzen 5900 .

princeoo7 · Jan 15, 2023

Panda said:
AMD Quietly Lists 31 New CPU Vulnerabilities, Issues Patch Guidance

Patch your Ryzen and EPYC systems.

www.tomshardware.com

3900X or 5900X affected ?

Fenix · Jan 15, 2023

princeoo7 said:
3900X or 5900X affected ?

Yes

JMP · Jan 15, 2023

Fenix said:
princeoo7 said:

3900X or 5900X affected ?

Click to expand...

Yes

3900x, ~~Yes~~ No.
5900x, No.

Fenix · Jan 15, 2023

JMP said:
3900x, Yes.
5900x, No.

Is there a list that you have, share it here so that the forum members are made aware. I checked the news, not this one but about this threat and could not find anything compiled.

captivating · Jan 15, 2023

JMP said:
3900x, Yes.
5900x, No.

Above post said 5000 series so 5900 yes I guess

JMP · Jan 15, 2023

Fenix said:
Is there a list that you have, share it here so that the forum members are made aware. I checked the news, not this one but about this threat and could not find anything compiled.

The article had a link to AMD's bulletin, was referring to that.

Fenix · Jan 15, 2023

JMP said:
The article had a link to AMD's bulletin, was referring to that.

So all Mobile AMD chips are affected and then these too - https://en.wikichip.org/wiki/amd/cores/cezanne
Damn - First Intel and now this.

enthusiast29 · Jan 15, 2023

JMP said:
The article had a link to AMD's bulletin, was referring to that.

I'll make it easy for you and others.
N/A means not affected and hence no fix needed.
Ryzen 2000 series is fixed already long back with AGESA 1.2.0.4 (Latest is v1.2.0.7 on most boards since a few months).
3000/5000 series is unaffected as all is N/A
5000G series is affected and will be fixed by upcoming AGESA 1.2.0.8.

Other platforms can be deciphered in the same way.

Search

Search

AMD Quietly Lists 31 New CPU Vulnerabilities, Issues Patch Guidance

Panda

AMD Quietly Lists 31 New CPU Vulnerabilities, Issues Patch Guidance

captivating

princeoo7

On a Journey called Life :P

AMD Quietly Lists 31 New CPU Vulnerabilities, Issues Patch Guidance

Fenix

Radhey Krishan

JMP

Fenix

Radhey Krishan

captivating

JMP

Fenix

Radhey Krishan

enthusiast29