AMD ta ba da sanarwar cewa ta ƙaddamar da rauni shida a cikin AMD EPYC da AMD Ryzen na'urori masu sarrafawa. Mafi haɗari uku mafi haɗari (CVE-2023-31342, CVE-2023-31343, CVE-2023-31345) na iya ba da izinin aiwatar da lambar a matakin SMM (Yanayin Gudanar da Tsarin), wanda ke da fifiko mafi girma fiye da yanayin hypervisor da zoben kariya na zeroth. Rarraba SMM yana ba da damar shiga mara iyaka zuwa duk ƙwaƙwalwar ajiyar tsarin kuma ana iya amfani dashi don sarrafa tsarin aiki. Rashin lahanin yana faruwa ne sakamakon rashin ingantaccen ingantaccen shigarwar shigarwa a cikin mai sarrafa SMM, wanda ke bawa maharin gata damar sake rubuta abubuwan da ke cikin SMRAM. Har yanzu ba a bayar da cikakken bayani kan hanyar kai harin ba.
Sauran raunin:
- CVE-2023-31352 kuskuren firmware ne a cikin tsarin AMD SEV (Secure Encrypted Virtualization) wanda ake amfani da shi a cikin tsarin ƙira don kariya injunan kama-da-wane daga tsangwama daga mai lura da tsarin ko mai kula da tsarin. Kamar yadda aka gyara raunin da aka samu a farkon watan Fabrairu, wannan matsalar tana bawa mai gudanarwa damar shiga yanayin mai masaukin baki damar karanta ƙwaƙwalwar da ba a ɓoye ba, wanda zai iya ƙunsar bayanan tsarin baƙo masu mahimmanci.
- CVE-2023-20582 - Yiwuwar ketare RMP (Taswirar Taswirar Taswirar) cak yayin amfani da tsawo na SEV-SNP (Secure Nsted Paging), wanda aka tsara don amintaccen aiki tare da teburan shafi na ƙwaƙwalwar ajiya. Mai kai hari tare da gata na gudanarwa na iya ƙirƙirar yanayi don kuskure a cikin Shigar Teburin Shafi (PTE) don ketare matakan kare mutuncin ƙwaƙwalwar ajiya na injina.
- CVE-2023-20581 - Wani lahani na samun damar shiga IOMMU zai iya ƙyale maharin mai gata ya ketare binciken RMP da lalata ƙwaƙwalwar ajiyar baƙi.
Rashin lahani yana shafar 3rd da 4th ƙarni AMD EPYC uwar garken, AMD EPYC 7003 da 9004 jerin saka CPUs, AMD Ryzen Embedded R1000, R2000, 5000, 7000, V2000, da V3000, 3000 Ry, da kuma 4000 Ryzen 5000 na'urori masu sarrafa tebur, da kuma jerin AMD Athlon 7000.
source: budenet.ru
