AMD affected by a Meltdown/Spectre like issue (Ryzenfall, Fallout, Chimera and Masterkey)
Fortinet PSIRT Advisories
Fortinet PSIRT Contact:
Website: https://fortiguard.fortinet.com/faq/psirt-contact
FG-IR-18-046
Final
1
1
2018-04-13T00:00:00
Current version
2018-04-13T00:00:00
2018-04-13T00:00:00
A collection of AMD vulnerabilities known as "Ryzenfall, Fallout, Chimera, Masterkey" has been released. Attackers in possession of these vulnerabilities would receive additional capabilities, like persistence by malware injection, stealth, network credential theft and more. It affects AMD processors: EPYC, Ryzen, Ryzen Pro, Ryzen Mobile. The related CVEs are: 1. CVE-2018-8930: The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient enforcement of Hardware Validated Boot, aka MASTERKEY-1, MASTERKEY-2, and MASTERKEY-3.2. CVE-2018-8931: The AMD Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-1.3. CVE-2018-8932: The AMD Ryzen and Ryzen Pro processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-2, RYZENFALL-3, and RYZENFALL-4.4. CVE-2018-8933: The AMD EPYC Server processor chips have insufficient access control for protected memory regions, aka FALLOUT-1, FALLOUT-2, and FALLOUT-3.5. CVE-2018-8934: The Promontory chipset, as used in AMD Ryzen and Ryzen Pro platforms, has a backdoor in firmware, aka CHIMERA-FW. 6. CVE-2018-8935: The Promontory chipset, as used in AMD Ryzen and Ryzen Pro platforms, has a backdoor in the ASIC, aka CHIMERA-HW. 7. CVE-2018-8936: The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips allow Platform Security Processor (PSP) privilege escalation.
Information disclosure
The following Fortinet products are NOT affected:FortiOS FortiAP FortiAnalyzer FortiSwitch
https://fortiguard.fortinet.com/psirt/FG-IR-18-046
AMD affected by a Meltdown/Spectre like issue (Ryzenfall, Fallout, Chimera and Masterkey)
- https://safefirmware.com/amdflaws_whitepaper.pdf
- https://safefirmware.com/amdflaws_whitepaper.pdf
- https://safefirmware.com/Whitepaper+Clarification.pdf
- https://safefirmware.com/Whitepaper+Clarification.pdf
- https://blog.trailofbits.com/2018/03/15/amd-flaws-technical-summary/
- https://blog.trailofbits.com/2018/03/15/amd-flaws-technical-summary/
- https://community.amd.com/community/amd-corporate/blog/2018/03/21/initial-amd-technical-assessment-of-cts-labs-research
- https://community.amd.com/community/amd-corporate/blog/2018/03/21/initial-amd-technical-assessment-of-cts-labs-research
AMD affected by a Meltdown/Spectre like issue (Ryzenfall, Fallout, Chimera and Masterkey)
CVE-2018-8930
CVE-2018-8931
CVE-2018-8932
CVE-2018-8933
CVE-2018-8934
CVE-2018-8935
CVE-2018-8936
0
https://fortiguard.fortinet.com/psirt/FG-IR-18-046
AMD affected by a Meltdown/Spectre like issue (Ryzenfall, Fallout, Chimera and Masterkey)
Reference>
- https://safefirmware.com/amdflaws_whitepaper.pdf
- https://safefirmware.com/amdflaws_whitepaper.pdf
- https://safefirmware.com/Whitepaper+Clarification.pdf
- https://safefirmware.com/Whitepaper+Clarification.pdf
- https://blog.trailofbits.com/2018/03/15/amd-flaws-technical-summary/
- https://blog.trailofbits.com/2018/03/15/amd-flaws-technical-summary/
- https://community.amd.com/community/amd-corporate/blog/2018/03/21/initial-amd-technical-assessment-of-cts-labs-research
- https://community.amd.com/community/amd-corporate/blog/2018/03/21/initial-amd-technical-assessment-of-cts-labs-research