CVE-2023-20593
CVE-2023-20593
An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.
Affected products
AMD · 2nd Gen AMD EPYC™ ProcessorsAMD · 3rd Gen AMD Ryzen™ Threadripper™ Processors “Castle Peak” HEDTAMD · AMD Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics “Renoir” AM4AMD · Ryzen™ 3000 Series Desktop Processors “Matisse” AM4AMD · Ryzen™ 4000 Series Mobile processors with Radeon™ Graphics “Renoir”AMD · Ryzen™ 5000 Series Mobile processors with Radeon™ Graphics “Lucienne”AMD · Ryzen™ 7020 Series processors “Mendocino” FT6AMD · Ryzen™ Threadripper™ PRO Processors “Castle Peak” WS SP3Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://cmpxchg8b.com/zenbleed.htmlhttp://seclists.org/fulldisclosure/2023/Jul/43https://lists.debian.org/debian-lts-announce/2023/07/msg00030.htmlhttps://lists.debian.org/debian-lts-announce/2023/07/msg00033.htmlhttps://lists.debian.org/debian-lts-announce/2023/08/msg00001.htmlhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CP6WQO3CDPLE5O635N7TAL5KCZ6HZ4FE/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKKYIK2EASDNUV4I7EFJKNBVO3KCKGRR/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SD2G74BXS2SWOE3FIQJ6X76S3A7PDGML/https://security.netapp.com/advisory/ntap-20240531-0004/https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7008https://www.debian.org/security/2023/dsa-5459https://www.debian.org/security/2023/dsa-5461