186 matches found
SMM Memory Corruption Vulnerability
Bulletin ID: AMD-SB-4003 Potential Impact: Arbitrary Code Execution Severity: High Summary SMM memory corruption vulnerability in SMM driver on some AMD Processors. CVE-2023-20555 Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an...
Software based Power Side Channel on AMD CPUs
Bulletin ID: AMD-SB-7006 Potential Impact: Information disclosure Severity: Low Summary A potential leakage of data using software-based power side channels on AMD CPUs was reported to AMD. This issue has also been referred to as ‘Collide + Power’. CVE Details Refer to Glossary for explanation of...
Cross-Process Information Leak
Bulletin ID: AMD-SB-7008 Potential Impact: Information disclosure Severity: Medium Summary Under specific microarchitectural circumstances, a register in “Zen 2” CPUs may not be written to 0 correctly. This may cause data from another process and/or thread to be stored in the YMM register, which...
AMD SEV VM Power Side Channel Security Bulletin
Bulletin ID: AMD-SB-3004 Potential Impact: Information disclosure Severity: Low Summary Researchers have reported a potential power side-channel attack using the Running Average Power Limit RAPL interface on AMD SEV VMs. The researchers focused only on the first generation of AMD SEV technology a...
Client Vulnerabilities – May 2023
Bulletin ID: AMD-SB-4001 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary Potential vulnerabilities in AMD Secure Processor ASP, AMD System Management Unit SMU, and other platform components were discovered, and mitigations are being...
AMD Server Vulnerabilities – May 2023
Bulletin ID: AMD-SB-3001 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary Potential vulnerabilities in the AMD Secure Processor ASP, AMD System Management Unit SMU, AMD Secure Encrypted Virtualization SEV and other platform components...
TPM Out of Bounds Access
Bulletin ID: AMD-SB-7002 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary Researchers have identified two potential vulnerabilities that affect systems using the TPM 2.0 reference implementation, including some systems using AMD CPUs...
AMD Ryzen™ Master Security Bulletin
Bulletin ID: AMD-SB-1052 Potential Impact: Privilege Escalation Severity: High Summary AMD Ryzen™ Master is a software tool that gives users advanced, real-time control of system performance. AMD Ryzen™ Master allows the user to control various clock and voltage settings in real time. CVE Details...
Cross-Thread Return Address Predictions
Bulletin ID: AMD-SB-1045 Potential Impact: Information Disclosure Summary AMD internally discovered a potential vulnerability where certain AMD processors may speculatively execute instructions at an incorrect return site after an SMT mode switch that may potentially lead to information disclosur...
AMD Client Vulnerabilities – January 2023
Bulletin ID: AMD-SB-1031 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary In collaboration with various third parties, AMD platforms were audited for potential security exposures. Potential vulnerabilities in AMD Secure Processor ASP,...
AMD Server Vulnerabilities – January 2023
Bulletin ID: AMD-SB-1032 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary During security reviews in collaboration with Google, Microsoft, and Oracle, potential vulnerabilities in the AMD Secure Processor ASP, AMD System Management Un...
AMD Link Android App
Bulletin ID: AMD-SB-1047 Potential Impact: Information Disclosure Severity: Medium Summary AMD Link is an AMD application designed for our gaming community and helps enable a user to stream Windows desktop and games to mobile devices, TVs and other Windows PCs. CVE-2022-27673 Insufficient access...
AMD μProf Security Bulletin
Bulletin ID: AMD-SB-1046 Potential Impact: Denial of service Severity: Medium Summary AMD μProf “MICRO-prof” is a software profiling analysis tool for x86 applications running on Windows, Linux and FreeBSD operating systems and provides event information unique to the AMD “Zen”-based processors a...
AMD Graphics Driver Vulnerabilities – November 2022
Bulletin ID: AMD-SB-1029 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary AMD received reports of vulnerabilities potentially affecting some AMD Graphics products. Refer to the CVE Details section for information about each CVE. CVE...
IBPB and Return Stack Buffer Interactions
Bulletin ID: AMD-SB-1040 Potential Impact: Information Disclosure Severity: Medium Summary AMD is aware of a potential vulnerability affecting AMD CPUs where the OS relies on IBPB to flush the return address predictor. This may allow for CVE-2017-5715 previously known as Spectre Variant 2 attacks...
Execution Unit Scheduler Contention Side-Channel Vulnerability on AMD Processors
Bulletin ID: AMD-SB-1039 Potential Impact: Information Disclosure Severity: Medium Summary Execution unit scheduler contention may lead to a side channel vulnerability found on AMD CPU microarchitectures codenamed “Zen 1”, “Zen 2”, “Zen 3” and “Zen 4” that use simultaneous multithreading SMT. By...
AMD CPU Branch Type Confusion
Bulletin ID: AMD-SB-1037 Potential Impact: Information disclosure, arbitrary speculative code execution Severity: Medium Summary This security bulletin addresses two issues related to CVE-2017-5715 previously known as Spectre Variant 2. As part of our efforts to continue improving security...
Frequency Scaling Timing Power Side-Channels
Bulletin ID: AMD-SB-1038 Potential Impact: Information Disclosure Severity: Medium Summary AMD is aware of the academic research paper titled “Hertzbleed: Turning Power Side-Channel Attacks Into Remote Timing Attacks on x86”. AMD has been notified the researchers intend to submit their paper to...
AMD Server Vulnerabilities - May 2022
Bulletin ID: AMD-SB-1028 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary During security reviews in collaboration with Google, Microsoft, and Oracle, potential vulnerabilities in the AMD Secure Processor ASP, AMD System Management Un...
Speculative Load Disordering
Bulletin ID: AMD-SB-1035 Potential Impact: Data Leakage Severity: Low Summary AMD processors may speculatively re-order load instructions which can result in stale data being observed when multiple processors are operating on shared memory, resulting in potential data leakage. CVE Details...
Ciphertext Side Channels on AMD SEV
Bulletin ID: AMD-SB-1033 Potential Impact: Data leakage Severity: Medium Summary AMD received notification of a potential security vulnerability where data in specific cryptographic algorithms can be inferred in a SEV guest by monitoring the ciphertext values over time. Researchers from the...
AMD Client Vulnerabilities – May 2022
Bulletin ID: AMD-SB-1027 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary During security reviews in collaboration with Google, Microsoft, and Oracle, potential vulnerabilities in the AMD Secure Processor ASP, AMD System Management Un...
LFENCE/JMP Mitigation Update for CVE-2017-5715
Bulletin ID: AMD-SB-1036 Potential Impact: Loss of Confidentiality Severity: Medium Summary AMD is providing an update for one recommended mitigation for CVE-2017-5715 previously known as Spectre Variant 2. The speculative execution window of AMD LFENCE/JMP mitigation MITIGATION V2-2 may be large...
AMD CPUs May Transiently Execute Beyond Unconditional Direct Branch
Bulletin ID: AMD-SB-1026 Potential Impact: Data leakage Severity: Medium Summary AMD is providing an update for one recommended mitigation, mitigation G-5, in the “Software Techniques for Managing Speculation on AMD processors” white paper. Mitigation G-5 helps address potential vulnerabilities...
AMD Response to Log4j (Log4Shell) Vulnerability
Bulletin ID: AMD-SB-1034 Potential Impact: Remote Code Execution Severity: Critical Summary 1/17/2022 Update: AMD has completed our investigation of the Apache Log4j vulnerability. AMD believes no AMD products are affected. 12/15/2021: AMD is actively investigating potential impacts of the Apache...
AMD Chipset Driver Information Disclosure Vulnerability
Bulletin ID: AMD-SB-1009 Potential Impact: Information Disclosure Severity: Medium Summary Low privileged malicious users may be able to access and leak data through the AMD Chipset Driver. CVE Details CVE-2021-26333 Insufficient access controls in the AMD Link Android app may potentially result ...
AMD Graphics Driver for Windows 10
Bulletin ID: AMD-SB-1000 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary In a comprehensive analysis of the AMD Escape calls, a potential set of weaknesses in several APIs was discovered, which could result in escalation of privilege...
Potential Improper Access Control Vulnerability in AMD μProf Tool
Bulletin ID: AMD-SB-1016 Potential Impact: Improper access / Code execution Severity: High Summary Potential improper access control vulnerability in AMD μProf Tool. CVE Details CVE-2021-26334 pThe AMDPowerProfiler.sys driver of AMD μProf tool may allow lower privileged users to access MSRs in...
AMD Server Vulnerabilities – November 2021
Bulletin ID: AMD-SB-1021 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary During security reviews in collaboration with Google, Microsoft, and Oracle, potential vulnerabilities in the AMD Secure Processor ASP, AMD System Management Un...
Side-channels Related to the x86 PREFETCH Instruction
Bulletin ID: AMD-SB-1017 Potential Impact: Leaked kernel address space information Severity: Medium Summary Researchers from Graz University of Technology with CISPA Helmholtz Center for Information Security have demonstrated timing and power-based side channel attacks leveraging the x86 PREFETCH...
Transient Execution of Non-canonical Accesses
Bulletin ID: AMD-SB-1010 Potential Impact: Data Leakage Severity: Medium Summary AMD reviewed “Transient Execution of Non-Canonical Accesses“ submitted by a researcher demonstrating that AMD CPUs may transiently execute non-canonical loads and store using only the lower 48 address bits. CVE Detai...
AMD Secure Encryption Virtualization (SEV) Information Disclosure
Bulletin ID: AMD-SB-1013 Potential Impact: Information Disclosure Severity: Medium Summary AMD received notification of a potential security vulnerability from a team of researchers led by Professor Yinqian Zhang from Southern University of Science and Technology SUSTech. A paper titled...
TLB Poisoning Attacks on AMD Secure Encrypted Virtualization (SEV)
Bulletin ID: AMD-SB-1023 Potential Impact: Loss of Integrity, Confidentiality and Availability Summary A malicious hypervisor HV along with an unprivileged process controlled by an attacker and executing in a guest VM, may maliciously control the process of flushing the Translation Lookaside Buff...
Speculative Code Store Bypass and Floating-Point Value Injection
Bulletin ID: AMD-SB-1003 Potential Impact: Data Leakage Severity: Medium Summary AMD is aware of research from the VUsec group at Vrije Universiteit Amsterdam and believes that these issues are only exploitable in conjunction with software vulnerabilities related to incorrect speculation of...
AMD Secure Encrypted Virtualization
Bulletin ID: AMD-SB-1004 Potential Impact: Arbitrary Code Execution Severity: Medium Summary AMD is aware of 2 research papers related to AMD’s Secure Encrypted Virtualization SEV which will be presented at this year’s 15th IEEE Workshop on Offensive Technologies WOOT’21. In the paper titled...
AMD RESPONSE TO “I see dead µops: leaking secrets via Intel/AMD micro-op caches” RESEARCH PAPER
Bulletin ID: AMD-SB-1006 Summary AMD has reviewed the research paper and believes existing mitigations were not being bypassed and no new mitigations are required. AMD recommends its existing side-channel mitigation guidance and standard secure coding practices be followed. CVE Details None...