Jump to content
  • Sign Up
×
×
  • Create New...
New feature: 1 Vote = 0.10€ for server Owner!

AMD finally patches gaping Zenbleed security hole — MSI releases AGESA 1.2.0.Ca BIOS update for Zen 2

Pelican Press

By Pelican Press,
in World News

 Share

Recommended Posts

  • Diamond Member
Pelican Press Warlord

Pelican Press 0

Posted
  • Diamond Member
Posted



AMD finally patches gaping Zenbleed security ***** — MSI releases AGESA 1.2.0.Ca BIOS update for Zen 2

MSI has published new BIOS updates featuring AMD’s AM4 AGESA 1.2.0.Ca firmware update aimed at Zenbleed attacks. The new firmware targets a vulnerability in AMD’s Ryzen 4000 series Zen 2 APUs that “may allow an attacker to potentially access sensitive information”. 

It appears MSI is rolling out the new BIOS updates as we speak. The new firmware update is available on almost all X570 motherboards, but only a few of MSI’s other chipsets and motherboards (including the 400 series) have the new firmware update at the time of writing.

AGESA 1.2.0.Ca specifically addresses Zen 2 vulnerability CVE-2023-20593, which is classified as a medium-level threat by AMD. Specific details on the threat itself were not disclosed, however, AMD does say that this threat can allow an attacker access to sensitive information “under specific microarchitectural circumstances”.

Even though AGESA 1.2.0.Ca is targeted direction at Ryzen 4000 “Renior” APUs, the threat exists in all Zen 2 processors. It just happens that AMD already patched this security vulnerability in prior AGESA microcode updates — 1.2.0.C and 1.0.0.B, in Ryzen 3000 processors before it got around to rectifying the issue in the Ryzen 4000 series.

AMD has already patched the security threat for other Ryzen-based CPUs outside of the AM4 platform, including the Ryzen 3000 Threadripper HEDT chips, 7002 EPYC server CPUs, and Ryzen 4000, 5000, and 7020 series mobile CPUs (yes some Ryzen 7000 mobile parts are Zen 2-based). Apparently, the only Zen 2 platform that ******** vulnerable is AMD’s Ryzen Embedded V2000 CPus which was supposed to get the EmbeddedPi-FP6 1.0.0.9 AGESA firmware update by April.

AMD did not state if this new security update impacts performance. When we tested Zenbleed fixes previously, we found that while gaming was unaffected, other performance could drop as much as 15%.

To re-iterate, this specific vulnerability only affects Zen 2-based chips, so if you have an AM4 chip using a different architecture — like Zen+ or Zen 3, you don’t need to update your BIOS.





This is the hidden content, please

#AMD #finally #patches #gaping #Zenbleed #security #***** #MSI #releases #AGESA #1.2.0.Ca #BIOS #update #Zen

This is the hidden content, please

For verified travel tips and real support, visit: https://hopzone.eu/
0

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Vote for the server

    To vote for this server you must login.

    Jim Carrey Flirting GIF

  • Recently Browsing   0 members

    • No registered users viewing this page.

Important Information

Privacy Notice: We utilize cookies to optimize your browsing experience and analyze website traffic. By consenting, you acknowledge and agree to our Cookie Policy, ensuring your privacy preferences are respected.

  I accept