Here we go again, what fancy logo shall we use…:
Researchers from CTS-Labs, a security company based in Israel, announced on Tuesday that they found 13 critical security vulnerabilities that would let attackers access data stored on AMD’s Ryzen and EPYC processors, as well as install malware on it. AMD’s Ryzen chips power desktop and laptop computers, while EPYC processors are found in servers.
The researchers gave AMD less than 24 hours to look at the vulnerabilities and respond before publishing the report. Standard vulnerability disclosure calls for 90 days notice, so companies have time to address flaws properly.
“At AMD, security is a top priority and we are continually working to ensure the safety of our users as new risks arise. We are investigating this report, which we just received, to understand the methodology and merit of the findings,” an AMD spokesman said.
The revelation of these vulnerabilities come after the emergence of Meltdown and Spectre, security flaws that affected Intel and Arm chips. They caused such a problem for PCs dating all the way back to the last two decades. The vulnerabilities were widespread considering that 77 percent of computer processors are Intel, while AMD takes up 22 percent.