Munguva pfupi yapfuura kusakanganiswa kwakasiyana kwakaburitswa iyo inobata zvese AMD uye Intel processors. Zvezvipembenene zvakagadziriswa Panyaya ye AMD, 22 kusasimba kwakabviswa mukati chizvarwa chekutanga, chechipiri nechechitatu che AMD EPYC yakatevedzana server processors izvo zvinokanganisa kushanda kwePSP (Platform Security processor), SMU (System Management Unit) uye SEV (Secure Encrypted Virtualization) matekinoroji.
Mukuwedzera, 6 matambudziko akanga atoonekwa muna 2020 uye 16 muna 2021. Vashandi veGoogle vakacherechedza kukanganisa gumi nerimwe panguva yezvidzidzo zvekuchengetedzwa kwemukati, zvitanhatu naOracle uye zvishanu neMicrosoft.
Kune maOEM, yakagadziridzwa AGESA (AMD Generic Encapsulated Software Architecture) firmware kits yakaburitswa, ichivharira kuratidzwa kwedambudziko neimwe nzira. Hewlett Packard Enterprise, Dell, Supermicro, uye Lenovo vakatoburitsa BIOS uye UEFI firmware zvigadziriso zvesevha yavo masisitimu.
Munguva yekuongorora kwekuchengetedza mukubatana neGoogle, Microsoft neOracle, kusazvibata kwakawanikwa uye kudzikiswa mu AMD Platform Security processor (PSP), AMD System Management Unit (SMU), AMD Secure Encrypted Virtualization (SEV) uye zvimwe zvikamu zvepuratifomu. mu AMD EPYC ™ AGESA ™ PI mapakeji.
4 kusasimba kunoiswa senjodzi (zvizhinji hazvisati zvaburitswa):
- CVE-2020-12954: Kugona kunzvenga nzira dzekudzivirira dzeSPI ROM nekushandisa mamwe emukati chipset marongero. Kusagadzikana kunobvumira anorwisa kuti agadzirise SPI Flash kuisa jekiseni rakashata kodhi kana rootkits zvisingaonekwe kune system.
- SVE-2020-12961-Kusagadzikana mu processor PSP (AMD Security processor), iyo inoshandiswa kumhanyisa bhokisi rejecha rakachengetedzwa risingasvikike kubva kune huru sisitimu yekushandisa, inobvumira anorwisa kusetazve chero akasarudzika processor marejista muSMN (System Management Network) uye kupfuura SPI Dziviriro ROM.
- CVE-2021-26331-A bug mu processor yakavakirwa-muSMU (System Management Unit), inoshandiswa kubata simba rekushandisa, voltage, uye tembiricha, inobvumira mushandisi asina rombo rakanaka kuti kodhi yavo iitwe neropafadzo dzakakwirira.
- CVE-2021-26335: Kusimbisa kusiri iko kweiyo data yekuisa mune kodhi yekurodha yePSP processor inokutendera iwe kuti ushandise kukosha kunodzorwa neanorwisa mune pre-yekusimbisa nhanho yedhijitari siginecha uye uwane kuitiswa kwekodhi yako paPSP.
Ukuwo, kubviswa kwekusagadzikana kunotaurwa zvakare (CVE-2021-26334) mubhuku rekushandisa AMD μProf, yakapihwa Linux uye FreeBSD, uye inoshandiswa kuongorora kushanda uye kushandiswa kwesimba. Dambudziko nderekuti iripo mune AMDPowerProfiler mutyairi uye inobvumira mushandisi kuwana mukana kune iyo MSR (Model-specific registration) kuronga kuitwa kwekodhi yako padanho rezero yekudzivirira mhete (ring-0). Kusagadzikana kwakagadziriswa mukuvandudza amduprof-3.4-502 yeLinux uye AMDuProf-3.4.494 yeWindows.
Ikozvino panyaya yematambudziko akabviswa muIntel processors, izvi zvakaziviswa panguva yekuburitswa kwekota mishumo yekusagadzikana muzvigadzirwa zvavo, pakati pezvinotevera zvinoonekwa:
- CVE-2021-0146: Kusagadzikana muIntel Pentium, Celeron neAtom processors yedesktop uye nharembozha inobvumira mushandisi nekuwana kwemuviri pakombuta kuti awane ropafadzo yekuwedzera nekumisikidza debugging modes. Iyo hardware inobvumira activation yebvunzo kana debug logic panguva yekumhanya kune mamwe Intel processors.
- CVE-2021-0157, CVE-2021-0158: kusasimba muBIOS referensi kodhi inopihwa kutanga Intel Xeon (E / W / Scalable), Core (7/10 / 11gen), Celeron (N) uye Pentium Silver processors. Matambudziko anokonzerwa neakaipa yekuisa kusimbiswa kana kutadza kuyerera kwekutonga muBIOS firmware uye kubvumira rombo kukwira nekuwanikwa kwenzvimbo.
Pakupedzisira, kana iwe uchifarira kuziva zvakawanda nezvazvo Nezve mishumo yakaburitswa ne AMD neIntel pamusoro pekubviswa kwekusagadzikana kwakawanikwa, unogona kubvunza ruzivo mune anotevera malink.