AMD has started rolling out updates to patch some – but not all – chips affected by the newly discovered “Sinkclose” security flaw. The vulnerability identified by researchers at IOActive was revealed in a report from It has strings last week, and it is said to affect many AMD processors going back to 2006. While AMD’s security team is working to find some of these disabled systems, Tom’s Hardware reports that the Ryzen 1000, 2000 and 3000 series and the Threadripper 1000 and 2000 will not receive any such updates.
The company told Tom’s Hardware that these are among the “older products outside our software support window.” The new models and all of AMD’s embedded processors are reported to have received or will receive the patch. The Sinkclose bug is considered more dangerous for governments or other large organizations than the average user, and even then, exploiting it would require deep access to a particular system. But the researchers who discovered it warned that it could be catastrophic if exploited, allowing hackers to use codes in the chips’ protected System Management Mode.
Source link
