AMD Processors Vulnerable to Malicious Microcode

sammiev · February 7, 2025, 6:40pm

ricklinux · February 7, 2025, 7:27pm

Cpu’s have always had vulnerabilities the same as other hardware. This is why i am a firm believer in updating UEFI Firmware (Bios).

The problem with some of these articles is they are not showing you any info. What bios versions were they testing on, what hardware was it etc. We all know that not all UEFI Firmware (Bios) implementations are very good. It would be nice if these updates were automatic. I know that some manufacturers are doing that. On my motherboards i can update the UEFI Bios directly online from with the UEFI firmware settings screen. I tend to download the files and install them from usb by going into the UEFI Firmware settings screen.

Edit: But i have done them directly also.

Locutus · February 7, 2025, 7:51pm

It would have been nice if MicroSOUR hadn’t forced motherboard manufacturers to allow the OS to write to the BIOS. At one time you booted your system, the BIOS found your hardware, figured out what it was, passed that info to the OS, and the OS booted and was then unable to communicate with the BIOS. One couldn’t write to the BIOS except from within the BIOS.

roiter · February 8, 2025, 5:55am

Reading the CVE this only seems to effect AMD EPYC processors (data center processors), not Ryzen consumer products. Turn off the alarms & stand down guys