AMD cpu jailbreak for microcode released by Google

804 Views | 1 Replies | Last: 9 mo ago by AtticusMatlock
FatZilla
User Profile Ignore User Stop Ignoring
How long do you want to ignore this user?
24 hours One week Permanently Cancel
11:36a, 3/8/25
AG
https://www.tomshardware.com/pc-components/cpus/you-can-now-jailbreak-your-amd-cpu-google-researchers-release-kit-to-exploit-microcode-vulnerability-in-zen-1-to-zen-4-chips

Interesting. I wonder if someone will unlock my 5700X3D.
Reply Quote
AtticusMatlock
User Profile
Private Message
Ignore User Stop Ignoring
How long do you want to ignore this user?
24 hours One week Permanently Cancel
12:39p, 3/8/25
Quote:

The EntrySign exploit works because AMD uses the AES-CMAC function (a message authentication code) as a cryptographic hash function. CMAC being used in this out-of-spec manner allowed Google's researchers to reverse engineer the security keys, preventing end users from pushing their unsigned microcode updates to the CPU (helped in no small part by AMD reusing a publicly-accessible NIST example key as its security key).


Good lord.

The good news though is that microcode installed in the way the Google exploit allows does not last through reboots.
Reply Quote
1 edit
Refresh
Page 1 of 1
 
×
subscribe Verify your student status
See Subscription Benefits
Trial only available to users who have never subscribed or participated in a previous trial.