[–]▶ No.849565>>849571 >>849582 >>849719 >>849841 >>849902 >>850418 [Watch Thread][Show All Posts]
AMD IS FUCKED AS WELL
AMD PSP Affected By Remote Code Execution Vulnerability
While all eyes have been on Intel this week with the Spectre and Meltdown vulnerabilities, a disclosure was publicly made this week surrounding AMD's PSP Secure Processor in an unrelated security bulletin.
AMD's Secure Processor / Platform Security Processor (PSP) that is akin to Intel's Management Engine (ME) is reportedly vulnerable to remote code execution.
A member of Google's Cloud Security Team discovered through static analysis that a function in PSP's firmware TPM code is vulnerable to a stack-based overflow due to missing bounds checks. Submitting a specially-crafted certificate to the fTPM trustlet code can lead to an overflow and then full control on the program counter.
Google reported this issue to the AMD Security Team in September and then in December began rolling out a software fix. Following the 90-day disclosure process, the information was made public here.
https://www.phoronix.com/scan.php?page=news_item&px=AMD-PSP-2018-Vulnerability
▶ No.849571>>849847
>>849565 (OP)
Fucking trustlets when will they learn
>Google reported this issue to the AMD Security Team in September and then in December began rolling out a software fix
itsfuckingnothing.tiff
▶ No.849580>>849632 >>849672 >>849984
And I continue regretting my FX purchase less and less every day. All I get hit with is Specter.
▶ No.849582
>>849565 (OP)
It's already taken care of.
▶ No.849584>>849596
>Submitting a specially-crafted certificate to the fTPM trustlet code can lead to an overflow and then full control on the program counter.
does this mean a specially crafted certificate could nuke the PSP all together? maybe it's best not to patch it.
▶ No.849596
>>849584
It depends on how botnet the PSP is. If it controls power management and ACPI calls like intel's ME does then no you can't just nuke it and be safe. Another problem with just deleting it would be that a virus could still write to the memory it was located in and hide in that section. So even if it isn't as botnet as the (((ME))) it still is a fucking botnet due to being R/W'able to begin with.
▶ No.849616>>849637
PSP is practically optional. OEMs even have the option to allow the user to disable it in upcoming releases.
▶ No.849632>>849635 >>849639 >>850037 >>850513
>>849580
Yup. And yes, I'm running Chrome. Sue me.
▶ No.849635>>849638 >>849639
>>849632
>purchase fx-8320 to avoid the botnet
>run chrome on a binary operating system with proprietary nvidia binary blobs
▶ No.849637>>849644 >>849902 >>849904
>>849616
the fact that's it's on there at all and YOU CANT USE IT, is concerning.
Atleast with Intel ME you could use it if you really felt like it. With PSP it's totally locked off. I haven't seen one piece of information on anyone who actually uses it, or how to use it if I wanted to.
▶ No.849638>>849640 >>849641
>>849635
Actually purchased it because it was cheap. And Chrome is relatively easy to uninstall when a browser that isn't shit is available.
▶ No.849639>>849835
>>849632
>has nvidia GPU
>not using nouveau for vidya
>and this >>849635
▶ No.849640>>849642
>>849638
I hope your atleast running chromium and not literally chrome.
▶ No.849641>>849642
>>849638
>what is palemoon and icecat
>what are palemoon themes to look like chrome
Do you even fucking install gentoo? No you don't. Get out pleb.
▶ No.849642>>849648
>>849641
Like I said, when a non shit browser is available
>>849640
Nope. 100% pure unadulterated Chrome.
▶ No.849644
>>849637
It's just meant to implement the actual security shit that's in the ME, nothing more; you use it, it's just not in a way you can perceive.
▶ No.849648>>849652 >>849856
>>849642
Define "non-shit". If you are going for the autistically perfect and bug free browser that is perfectly secure, it could never exist because of how CSS, IPV4/6, SSL, and HTTP are structured. If by non-shit you mean fast, then palemoon is much faster then chrome you faggot, go check the benchmarks out via jewgle. If by non-shit you mean more customizable, then palemoon and icecat have firefox's old repository of addons and plugins like flash and java. Icecat even supports new addons that webkit uses.
▶ No.849652>>849658
>>849648
In real world terms, at least on my machine, Chrome renders a shit ton faster and less buggy than pale meme. And as far as IceCat, if I wanted faggotfox I'd just run that.
▶ No.849658>>849665
>>849652
chromium is flat out faster than pozfox or any of it's forks, even with it's (((quantum))) poz injection with rust, it's still 30% slower.
▶ No.849665
>>849658
Is this a joke? palemoon was forked before the pozzfest as to save the codebase from the cancerous pajeets. Palemoon forked in like 2009 and icecat has patchsets that do use the current code. But icecat removes a bunch of cancer. Have you even tried palemoon recently? I haven't used mainline firefucks since like 2009 actually. The forks are way better. I remember trying chromium in like 2013 but it was shit on my proccessor using like 13% of it to load a page but with a firefox fork I use like less then 1%. If you don't use windows then the opengl rendering engine is faster then chrome/chromium or mainline firecucks. If you do use windows then go >>>/back/ .
▶ No.849672
>>849580
Math Libbie is a NIGGER!
▶ No.849673>>849819
AMD's PSP is similar to IME. That's the key word: similar. They're not the same thing.
One of the key differences is that PSP does not have Internet connectivity and, in fact, relies on software installed on the OS for such things. In other words, vulnerabilities like these are not as bad or important as the ones in Intel CPUs.
▶ No.849719
▶ No.849819>>849834
>>849673
I hope we'll see coreboot for Ryzen chipsets one day, and have more insight into the PSP.
If that's true I'd still be more content if you could strip it from the flash like with me_cleaner
▶ No.849834>>849848
>>849819
You won't, newer UEFIs are tivoized. And the PSP is on the actual processor and not on the BIOS chip like the ME so you can't just dump and write to it with your meme pi.
▶ No.849835>>849838 >>849840
>>849639
Nouveau is shit, and you can actually play games with proprietary drivers.
▶ No.849838
>>849835
You can play even more of them and with less bugs and better performance on Windows. I will never understand you retards, it's like *NIX is a fashion statement to your ilk.
▶ No.849840>>849844
>>849835
Nouveau is shit with new cards*
My 780 doesn't perform as well as the blob, granted, but it is quite usable.
▶ No.849841
>>849565 (OP)
>pull the internet cable out
Suddenly I have the world's most secure computer.
▶ No.849842
Belongs in the news cyclical fam.
▶ No.849844
>>849840
based GTX780 brother, i'll ride this rig until it dies
▶ No.849847
>>849571
>trustlets
Trustlets, manlets, niglets.
They are all a liability.
▶ No.849848>>849854
>>849834
That's horrifying. I don't even know what to hope for to escape the botnet from now on.
▶ No.849853>>849855
>missing bounds checks
Rust could have prevented that.
▶ No.849854
>>849848
Either for VIA to make x86 CPUs again that are not botnet or switch to a more free architecture. POWER and RISCV, especially the specific implementations TALOS II (will probably ship this month) and EOMA68 (in planning) respectively, are the most promising.
▶ No.849855
>>849853
This is why I like C(++) more, it keeps the botnet vulnerable.
▶ No.849856
>>849648
> it could never exist because of how CSS, IPV4/6, SSL, and HTTP are structured
Tech beginner and student here.
I have no clew of why these are bad because of how they are structured, could you please care to educated me ?
▶ No.849902
>>849565 (OP)
>Update: Contrary to the original security notice, AMD has now confirmed to us this vulnerability isn't subject to remote code execution.
OP is a fag.
>>849637
It's the TPM. You'd use it for Bitlocker, or for DRM routines in Windows. Needless to say this makes it effectively dead silicon for /tech/ies.
▶ No.849904>>850253
>>849637
>the fact that's it's on there at all and YOU CANT USE IT, is concerning.
http://support.amd.com/TechDocs/52740_16h_Models_30h-3Fh_BKDG.pdf
Did you RTFM?
▶ No.849984>>849986 >>850260
>>849580
FX-8770 HD-6950 combo, reporting. Who poorfag here?
▶ No.849986
>>849984
i wouldn't upgrade from that even if i had the money
▶ No.849993>>849995 >>850021 >>850250
you can just disable PSP in the BIOS and in the Device Manager
▶ No.849995
>>849993
>like that does anything
Well fuck me lads, this anon figured it all out, looks like the NSA is foiled again!
:^)
▶ No.849997>>850001
latest BIOS updates with AGESA upgrade(1.0.0.6b? i think) should allow it
▶ No.849999>>850001
should be "BIOS PSP Support - Disabled" in the bios after the update
▶ No.850001>>850003
>>849997
>>849999
it's only "disabled" until someone discovers it doesn't actually disable it.
▶ No.850005>>850008
>>850003
it probably disables it for the user, but not entirely
▶ No.850008
>>850005
at least AMD gives you a choice even if partial
▶ No.850021
>>849993
You are genius, this will change world! Will you be doing talk at CCC?
▶ No.850037>>850042 >>850043
>>849632
>tfw no deepin wm package for debian
▶ No.850042
>>850037
just compile it fag
▶ No.850043
>>850037
They may be gay leftist, but they still don't want aids even while taking the poz from the big systemd.
▶ No.850058>>850203
Feeling pretty vindicated upgrading to an FX-8320e last year.
▶ No.850188
>Google reported this issue to the AMD Security Team in September and then in December began rolling out a software fix. Following the 90-day disclosure process, the information was made public here.
Convenient timing, set to release just as Meltdown was being disclosed. Google probably had the vuln for months and were paid off by Intel to release it to take the heat off in the wake of Meltdown.
▶ No.850192
>Without access to a real AMD hardware
How could this be true? It's literally Google for crying outloud.
inb4 it's because everyone has macbooks :^)
▶ No.850203>>850236
>>850058
what about laptop FX-9800p? i'm considering a dell 5576 with rx460?
▶ No.850236
>>850203
Newer than 2012, so it has UEFI + PSP.
▶ No.850243
▶ No.850250
>>849993
>le disable in bios face
▶ No.850253>>850254
>>849904
what the fuck? where did you find this? what page links to this?
▶ No.850254>>850256
▶ No.850256
>>850254
apparently not this website. i didn't know this section was even there. this still doesn't say a damn thing about the PSP though. It just describes some interrupts.
▶ No.850260>>850305
>>849984
FX 8350, R9 390 reportan in for duty.
>mfw the gaymen card I bought for 300$ in 2015 is now getting cryptoscalped for upwards of 500$
>mfw it got faster over time due to excellent driver support on Windows
>mfw amdgpu supports it while jewVidya is stuck with gimped nouveau and gay proprietary drivers
>mfw no PSP hardware botnet
>mfw will never have to upgrade again thanks to Moore's law coming to a close
▶ No.850305>>850319 >>850457
>>850260
My R9 390 has never, I mean never, worked under Linux.
▶ No.850319>>850325
▶ No.850325>>850333
>>850319
Really? I get to rip out my GTX 770? I might break the 390 if it doesn't work tbh
▶ No.850333
>>850325
Michael "FAS" Larabel has covered this event in more detail that anybody sane cares to read. This is the jist, go further at your own peril.
https://www.phoronix.com/scan.php?page=news_item&px=Linux-4.15-AMD-Mega
▶ No.850418
>>849565 (OP)
This isn't remotely surprising. They probably have all kinds of side channel issues just like Intel as well because of meme prediction and caching. The only sane reason to buy AMD was because you need a machine to run shitware such as Windows inside a Faraday cage and you don't want to give money to the bigger company (Intel).
▶ No.850457
>>850305
did you enable the required kernel parameters for radeon/amdgpu sea islands support?
▶ No.850513
>>849632
Haha wow you're retarded kid
▶ No.850515
>mah pozzfox
>mah sjw!
Feels good not being a beta faggot