[G3D] AMD addresses SEV security vulnerability in Epyc CPUs with firmware update - Overclock.net - An Overclocking Community

Forum Jump: 

[G3D] AMD addresses SEV security vulnerability in Epyc CPUs with firmware update

 
Thread Tools
post #1 of 8 (permalink) Old 06-28-2019, 07:27 AM - Thread Starter
Performance is the bible
 
Join Date: Apr 2009
Posts: 6,705
Rep: 436 (Unique: 300)
[G3D] AMD addresses SEV security vulnerability in Epyc CPUs with firmware update

Source
Quote:
A month or so ago. Cfir Cohen, a member of the Google Cloud security team, alerted AMD about a problem with the Secure Encrypted Virtualization (SEV) functionality of the Epyc processors. This vulnerability could allow an attacker to intercept a secret key that could give access to isolated virtual machines.

This specific vulnerability has been patched but did require a firmware update. The update is named CVE-2019-9836 and it is of course strongly recommended to install that update as quickly as possible.


Defoler is offline  
Sponsored Links
Advertisement
 
post #2 of 8 (permalink) Old 06-28-2019, 09:25 AM
[LV]ErroR_404
 
mkclan's Avatar
 
Join Date: Nov 2011
Location: Latvia
Posts: 532
Rep: 12 (Unique: 11)
mkclan is offline  
post #3 of 8 (permalink) Old 06-28-2019, 10:09 AM
I <3 narcissists
 
bigjdubb's Avatar
 
Join Date: Feb 2008
Location: Houston, TX
Posts: 5,440
Rep: 215 (Unique: 135)
Quote: Originally Posted by mkclan View Post
they say that it has already been fixed
https://www.theregister.co.uk/2019/0...security_flaw/

Sry my English
This news post is about that firmware fix.

El Computer
(15 items)
CPU
AMD Ryzen 7 2700X
Motherboard
Asrock X470 Taichi Ultimate
GPU
Radeon VII
GPU
EVGA 2080ti FTW3 Ultra
RAM
G.SKILL TridentZ RGB
Hard Drive
Samsung 970 EVO
Hard Drive
CRUCIAL 1TB MX500 M.2
Power Supply
EVGA G3
Cooling
CORSAIR H150I PRO
Case
LianLi PC-O11 Dynamic
Operating System
Windows 10 Pro
Monitor
LG 32GK850G
Monitor
50" Vizio 4k TV
Keyboard
Logitech G110
Mouse
G.SKILL RIPJAWS MX780 USB
▲ hide details ▲


bigjdubb is online now  
Sponsored Links
Advertisement
 
post #4 of 8 (permalink) Old 06-28-2019, 10:58 AM
New to Overclock.net
 
DNMock's Avatar
 
Join Date: Jul 2014
Location: Dallas
Posts: 3,377
Rep: 168 (Unique: 123)
I get the feeling that as AMD's CPU popularity grows we will find out about more and more vulnerabilities on them.

Probably gonna be in the red team member's best interest to lay off on bashing intel for all their problems (I'm guilty of it myself) for the time being before they gotta eat crow.


DNMock is offline  
post #5 of 8 (permalink) Old 06-28-2019, 12:29 PM
New to Overclock.net
 
Jedi Mind Trick's Avatar
 
Join Date: Jun 2012
Location: Chicago
Posts: 1,346
Rep: 73 (Unique: 64)
Quote: Originally Posted by DNMock View Post
I get the feeling that as AMD's CPU popularity grows we will find out about more and more vulnerabilities on them.

Probably gonna be in the red team member's best interest to lay off on bashing intel for all their problems (I'm guilty of it myself) for the time being before they gotta eat crow.
But it is so tasty
Jedi Mind Trick is online now  
post #6 of 8 (permalink) Old 06-30-2019, 07:11 PM
New to Overclock.net
 
Avonosac's Avatar
 
Join Date: Dec 2012
Location: PA
Posts: 2,944
Rep: 158 (Unique: 114)
Quote: Originally Posted by DNMock View Post
I get the feeling that as AMD's CPU popularity grows we will find out about more and more vulnerabilities on them.

Probably gonna be in the red team member's best interest to lay off on bashing intel for all their problems (I'm guilty of it myself) for the time being before they gotta eat crow.
Yes, there will be some of that but less than you think. Fundamentally, Intel has always been run by people of questionable ethics, the kind of organizations who make the trade-offs they have for market share are also the kind of companies who don't listen to engineers blowing the whistle on questionable decisions which could hit the bottom line. Will there be more issues found when people start looking? Without a doubt. Will it be as bad as with Intel? I'd be very surprised if so.


Avonosac is offline  
post #7 of 8 (permalink) Old 07-01-2019, 05:39 AM - Thread Starter
Performance is the bible
 
Join Date: Apr 2009
Posts: 6,705
Rep: 436 (Unique: 300)
Quote: Originally Posted by Avonosac View Post
Intel has always been run by people of questionable ethics
Historically every company in that group had questionable ethics. AMD, intel, nvidia, even ARM, all had their fair share if unethical behaviour in order to try and push their products at the cost of others.
Intel and nvidia are just bigger, so we see them as bigger vultures, and with AMD being the smaller, AMD we consider as the underdog so we accept some of their tactics as a pushback or acceptable because they are only trying to play in the big boys fields.
So mentality wise, we criticise intel and nvidia more for things even AMD are doing.
Same reason why the companies that find bugs in intel or AMD chips, mostly find them in intel, because they are looking more at intel chips. Same reason why you hear about a huge amount of bugs in windows and think that linux feels saver. Even though if you were licensed to redhat as a customer, you would find out that redhat release as many bug fixes (daily) as microsoft, because the amount of bugs and security holes.


Defoler is offline  
post #8 of 8 (permalink) Old 07-09-2019, 06:03 PM
New to Overclock.net
 
Avonosac's Avatar
 
Join Date: Dec 2012
Location: PA
Posts: 2,944
Rep: 158 (Unique: 114)
Quote: Originally Posted by Defoler View Post
Historically every company in that group had questionable ethics. AMD, intel, nvidia, even ARM, all had their fair share if unethical behaviour in order to try and push their products at the cost of others.
Intel and nvidia are just bigger, so we see them as bigger vultures, and with AMD being the smaller, AMD we consider as the underdog so we accept some of their tactics as a pushback or acceptable because they are only trying to play in the big boys fields.
So mentality wise, we criticise intel and nvidia more for things even AMD are doing.
Same reason why the companies that find bugs in intel or AMD chips, mostly find them in intel, because they are looking more at intel chips. Same reason why you hear about a huge amount of bugs in windows and think that linux feels saver. Even though if you were licensed to redhat as a customer, you would find out that redhat release as many bug fixes (daily) as microsoft, because the amount of bugs and security holes.
Ahhhhh, but cause or effect? AMD didn't have that kind of behavior until it became the market norm. In a dog eat dog world, sometimes you have to bite someone regardless of it being against your nature. The axiom, "be careful who you choose as your enemy because that's who you'll become most like" comes to mind here. Intel was literally paying competitors to blackball AMD, when the legal system literally takes years even for an injunction into that kind of behavior, you have little choice but to engage in similar tactics if you choose not to fold.

Also, yes I already directly pointed out there is more eyes on Intel chips. Take care with the analogy though, POSIX is inherently far safer because its entire design philosophy is to fail closed and almost always you can apply the changes without bringing systems down. Windows is open by default and M$ are trying to blacklist access to safe levels but it's an impossible task, the majority of security updates also require the system to come down. You're trying to make a valid point, but using a very bad example. Fixing bugs isn't the problem, its how you respond to them that matters.

In some ways your chosen example just reinforces the point I was making, RHEL (AMD) is fundamentally designed to be more secure and resilient than Windows (Intel) which cuts corners for the cheap improvements despite existing evidence against the approach.


Avonosac is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off