Google researchers uncover critical security flaw in all AMD Zen processors

floofloof · 1 day ago

Google researchers uncover critical security flaw in all AMD Zen processors

The Bard in Green@lemmy.starlightkel.xyz · 1 day ago

The researchers discovered that AMD had been using a publicly available example key from NIST documentation since Zen 1,

lol… sigh…

floofloof · edit-2 21 hours ago

Just like all the BIOSes that have turned out to be using keys called things like TEST ONLY - NOT FOR PRODUCTION, rendering Secure Boot not. I have a couple of computers like this.

cron@feddit.org · edit-2 1 day ago

The researchers discovered that AMD had been using a publicly available example key from NIST documentation since Zen 1, which allowed them to forge signatures and deploy arbitrary microcode modifications.

I wish these sorts of errors were not that common.

Google researchers uncover critical security flaw in all AMD Zen processors

Google researchers uncover critical security flaw in all AMD Zen processors

Attention Required! | Cloudflare