this post was submitted on 13 Aug 2024

42 points (97.7% liked)

Cybersecurity

5650 readers

64 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !cybersecurity@lemmy.capebreton.social !securitynews@infosec.pub !netsec@links.hackliberty.org !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 1 year ago

MODERATORS

kid@sh.itjust.works

Lanky_Pomegranate530@midwest.social

AMD addresses Sinkclose vulnerability but older processors left unattended (www.csoonline.com)

submitted 2 months ago by BrikoX@lemmy.zip to c/cybersecurity@sh.itjust.works

13 comments fedilink hide all child comments

The company has decided not to extend these updates to its Ryzen 1000, 2000, and 3000 series processors or its Threadripper 1000 and 2000 models.

top 13 comments

sorted by: hot top controversial new old

[–] VeganCheesecake@lemmy.blahaj.zone 31 points 2 months ago (4 children)

Well, I'm still using a Ryzen 3000 chip. Maybe I should go Intel next time. Oh wait, those are currently corroding from the inside. Guess I'll just stop using computers.

[–] twoface@sh.itjust.works 10 points 2 months ago

Afaik you need kernel access to use this vulnerability. It still sucks, but having malware with kernel access sucks either way. So lets just hope that our favorite kernel anti-cheats never get compromised.

[–] BoxOfFeet@lemmy.world 5 points 2 months ago

I still love my 3000 series. Nice speed, low heat, good price. I'll probably upgrade my gpu again before replacing it. What a good little workhorse.

[–] lengau@midwest.social 1 points 2 months ago

I am hopeful that some further work on RISC-V gets some more competition in the space.

[–] ryannathans@aussie.zone -1 points 2 months ago (2 children)

To be fair it's now 3 gens old but I do feel the sentiment

[–] floofloof@lemmy.ca 3 points 2 months ago (2 children)

AMD should patch whatever is still in widespread use, including the 3xxx series. It's not that old.

[–] jlh@lemmy.jlh.name 2 points 2 months ago

This is not a bug that affects consumers. plenty of hardware has firmware vulnerabilities like this, including ssds, the groups who care about this are the ones who have security as a top priority.

[–] ryannathans@aussie.zone 2 points 2 months ago

Yes

[–] traches@sh.itjust.works 3 points 2 months ago (1 children)

Are the newer ones any better? I’m not replacing my CPU, mobo, and ram for like a 25% improvement

[–] ryannathans@aussie.zone 2 points 2 months ago

Even the low end cpus in the new 9000 series put my 5950X to shame

https://www.phoronix.com/review/ryzen-9600x-9700x/3

Many pages of benchmarks here, keen to see what the 9950x can do

[–] Fecundpossum@lemmy.world 4 points 2 months ago (1 children)

Safe to assume that these patches will be provided via operating system updates? Patch to the kernel for Linux users? I see bajillion articles when I look up sinkclose, but nothing about the patch method.

[–] BrikoX@lemmy.zip 8 points 2 months ago (1 children)

Patch method is BIOS via OEMs. https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7014.html

[–] Fecundpossum@lemmy.world 3 points 2 months ago

Thanks 🙏🏻