Google researchers uncover critical security flaw in all AMD Zen processors

@[email protected] · 1 day ago

Google researchers uncover critical security flaw in all AMD Zen processors

The Bard in Green · 24 hours ago

The researchers discovered that AMD had been using a publicly available example key from NIST documentation since Zen 1,

lol… sigh…

@[email protected] · edit-2 18 hours ago

Just like all the BIOSes that have turned out to be using keys called things like TEST ONLY - NOT FOR PRODUCTION, rendering Secure Boot not. I have a couple of computers like this.

@[email protected] · edit-2 1 day ago

The researchers discovered that AMD had been using a publicly available example key from NIST documentation since Zen 1, which allowed them to forge signatures and deploy arbitrary microcode modifications.

I wish these sorts of errors were not that common.

Google researchers uncover critical security flaw in all AMD Zen processors

Google researchers uncover critical security flaw in all AMD Zen processors

Attention Required! | Cloudflare