AMD refused to fix the Sinkclose vulnerability in Ryzen 3000 and earlier – they are too old

Image Source: AMD/tomshardware.com

The vulnerability, dubbed Sinkclose, allows hackers to gain access to the SMM system management mode in computers running AMD processors and inject malware into the UEFI bootloader. It is almost impossible to detect and remove such software – this will require physically erasing the contents of the chip from the BIOS using a programmer. To complicate matters, the SMM layer allows unrestricted access to all system memory and can be used to monitor the operating system. Given the severity of the problem, AMD has released security updates for a number of processors.

However, the company notes that some older products are beyond the period of their software support – AMD does not intend to close the security hole in them. In particular, the company does not plan to update the Ryzen 1000, 2000 and 3000 series processors, as well as the Threadripper 1000 and 2000 models. The new Ryzen 9000 and Ryzen AI 300 processors are also missing from the list, but there is a possibility that for them the vulnerability was fixed at the factory .

Processors that have already received or are awaiting a security update include the following:

  • All generations of AMD EPYC processors for data centers;
  • Latest Threadripper and Ryzen models;

  • MI300A chips for data centers.

Full table of AMD chips for which the update will be released:

Image source: Tomshardware.com

Although the Sinkclose vulnerability is difficult to exploit, AMD recommends that all users install the update as soon as it becomes available. At the same time, the company assured that the update will not affect processor performance.

It is also noted that all Ryzen Embedded and EPYC Embedded, without exception, will receive the update. This is due to the fact that most embedded processors run in the background 24/7 without human intervention for several years, which further creates the threat of various types of hacker attacks.

admin

Share
Published by
admin

Recent Posts

Elon Musk’s lawsuit against OpenAI to change business model to be heard in spring 2026

Billionaire Elon Musk's lawsuit against ChatGPT developer OpenAI will be heard by a jury in…

10 minutes ago

VK Closes Showcase with NFT Avatars and VK NFT Tokens

The creators of the VK NFT project, which is a showcase with tokens and hexagonal…

50 minutes ago

Tesla to Lose Veteran Software Chief

Many of Tesla's Chinese competitors have already come to the realization that it's hard to…

1 hour ago

Neuralink is looking for new volunteers to test brain implants, now worldwide

As of February this year, Elon Musk's startup has implanted a brain implant in three…

2 hours ago

Atomfall – Roadside Tea Party Review

Played on PC Sometimes you come across games whose essence is impossible to grasp before…

8 hours ago