AMD won't patch all chips affected by severe data theft vulnerability — Ryzen 3000, 2000, and 1000 will not get patched for 'Sinkclose'
AMD won't patch all chips affected by severe data theft vulnerability — Ryzen 3000, 2000, and 1000 will not get patched for 'Sinkclose'
AMD says some chips fall outside of the software support window.
![AMD won't patch all chips affected by severe data theft vulnerability — older Ryzen models will not get patched for 'Sinkclose' [Updated]](https://lemmy.world/pictrs/image/7e759a8e-a73f-46a6-b42d-614da402ae60.jpeg?format=webp&thumbnail=256)
cross-posted from: https://aussie.zone/post/12579772
Here we are - 3600 which was still under manufacture 2-3 years ago are not get patched. Shame on you AMD, if it is true.
Not patching the 3000 series seems like a big mistake because it was so popular. There's gotta be lots of those chips out in the wild. It's also a 5 year old chip. So I get not being able to go that far back.
Can anyone just release a chip without massive security flaws these days?
Can anyone just release a chip without massive security flaws these days?
Modern CPUs are far too complex to not inevitably have some sort of issue. You could make one without bugs, but it's going to perform HORRIBLY because all of those shortcuts are what make CPUs fast.
Apple? Or was there also a massive exploit found for Apple Silicon?
Yep. GoFetch. Unpatchable hardware exploit on M1, M2 and M3 processors.
AS had a pretty big bug the other day.
This is really bad because unlike previous exploits, if you get owned, you have no way of ever knowing. No virus scan can detect it, no OS reinstall will remove it.
But the attacker/hacking tool needs admin/kernel access in the first place.
Which all dangerous exploits already give. Next time there's a new published exploit for Linux or Windows, you could have been affected but will never know and will never be able to remove.