Lanky_Pomegranate530@lemmy.world to Technology@lemmy.worldEnglish · 1 year agoEncryption-breaking, password-leaking bug in many AMD CPUs could take months to fixarstechnica.comexternal-linkmessage-square96fedilinkarrow-up1613arrow-down116cross-posted to: technology@beehaw.orgprivacy@lemmy.mlcybersecurity@sh.itjust.works
arrow-up1597arrow-down1external-linkEncryption-breaking, password-leaking bug in many AMD CPUs could take months to fixarstechnica.comLanky_Pomegranate530@lemmy.world to Technology@lemmy.worldEnglish · 1 year agomessage-square96fedilinkcross-posted to: technology@beehaw.orgprivacy@lemmy.mlcybersecurity@sh.itjust.works
minus-squareevatronic@lemm.eelinkfedilinkEnglisharrow-up44·1 year agoIt’s worth noting these are the firmware / microcode fixes. There’s already a software solution available, There is a software workaround, you can set the chicken bit DE_CFG[9]. This may have some performance cost, and the microcode update is preferred. source: https://www.openwall.com/lists/oss-security/2023/07/24/3 AMD has also already released a fix for the big boy - the EPYC processor.
minus-squareDr. Dabbles@lemmy.worldlinkfedilinkEnglisharrow-up1·1 year agoThe MSR bit is potentially a large performance loss and AMD recommends their partners not use it. In my tests is was 5-15% on EPYC depending on workload. “Some performance cost” is really hiding the reality of that bit.
It’s worth noting these are the firmware / microcode fixes.
There’s already a software solution available,
AMD has also already released a fix for the big boy - the EPYC processor.
The MSR bit is potentially a large performance loss and AMD recommends their partners not use it. In my tests is was 5-15% on EPYC depending on workload. “Some performance cost” is really hiding the reality of that bit.