It’s been just over a week since Israeli cybersecurity startup CTS Labs published a white paper about a huge list of vulnerabilities called “AMDFlaws” affecting AMD’s EPYC, Ryzen, Ryzen Pro, and Ryzen Mobile CPU lineups. Ta. The report managed to create quite a stir among cybersecurity analysts and industry insiders, many of whom went public with the vulnerability just one day after notifying AMD of the vulnerability, forcing the chipmaker to completely shut down the issue. He slammed the Tel Aviv-based company for blinding him.
Some, like Linus Torvalds, an outspoken technology guru and creator of the Linux kernel, have called security advisories “garbage” and questioned the findings themselves, saying, “The world of IT security has taken a hit. Some people go so far as to say , A new low.” But others, like Dan Guido, a well-respected cybersecurity analyst, say that when he and his team investigated the flaw, it turned out to be extremely difficult, despite all the hype and controversy surrounding it. He said that he found it to be realistic.
AMD said it would investigate the report “to understand the methodology and merits of the findings.” Now, the company has released a statement confirming all 13 vulnerabilities detailed by CTS and promising to issue patches for all of them in the coming weeks. The company further added that no performance degradation is expected due to the impending update.
The full statement highlights the level of difficulty and access required to perform the hack described in CTS Labs’ findings. “It is important to note that all of the issues raised in the study require administrative access to the system. Users have unrestricted access to the system and can delete, create, and delete folders and files on the computer. AMD further notes that anyone who can gain unauthorized administrative access could carry out attacks more severe than those identified by CTS Labs. He added that there is.
According to AMD, this issue will be fixed in the coming weeks “rather than months” through a firmware patch and BIOS update. The company also said that none of these issues are specific to Zen, but are related to PSP and ASMedia chipsets. Additionally, these flaws are apparently unrelated to the Meltdown and Spectre vulnerabilities that have caused significant disruption over the past few months.
![How to set up a Raspberry Pi web server in 2021 [Guide]](https://i0.wp.com/pcmanabu.com/wp-content/uploads/2019/10/web-server-02-309x198.png?w=1200&resize=1200,0&ssl=1)
