AMD Processor Vulnerability: Acknowledged, Fixes to Come Soon
AMD has confirmed a new processor vulnerability in its lineup, which affects consumer Ryzen CPUs. Although the company has not yet named the specific processors impacted or provided details on the vulnerability itself, it has confirmed that mitigations are in progress and will be necessary to protect systems.
The issue came to light when Tavis Ormandy, a researcher with Google’s Project Zero, noted a reference to the vulnerability in a beta BIOS update released by Asus for its gaming motherboards. Ormandy later removed the mention, but the Register had already picked up on the incident.
According to AMD, the vulnerability can only be exploited if an attacker has local administrator-level access and can execute malicious microcode. The company assured customers that it is actively working with partners to develop and deploy mitigations.
For now, AMD recommends that users continue practicing standard security measures, including only installing code from trusted sources. A security bulletin with further details and mitigation instructions is expected soon.