"AMD Issues Updates for Silicon-Level 'SinkClose' Processor Flaw"

AMD has issued firmware updates to address a nearly two-decade-old silicon-level vulnerability called "SinkClose" in its EPYC data center processors and Ryzen line of processors for PCs and embedded systems. The flaw impacts a processor component that protects System Management Mode (SMM), an execution mode more privileged than kernel-level mode. According to the IOActive researchers who discovered the privilege escalation vulnerability, it is an "unpatchable" issue. If exploited, it enables an attacker to install malware on a system that would be nearly impossible to remove. Millions of devices worldwide currently use AMD chips that are affected by the vulnerability. This article continues to discuss updates regarding the SinkClose processor flaw.  

Dark Reading reports "AMD Issues Updates for Silicon-Level 'SinkClose' Processor Flaw"

Submitted by grigby1