AMD Processor Security Updates – Patches für Spectre 1/2
AMD stellt nach eigenen Angaben ab sofort Microcode-Updates für GPZ Variant 1/Spectre und GPZ Variant 2/Spectre zur Verfügung. AMD selbst liefert den Microcode an Linux und Microsoft, so wie an die entsprechenden OEM/ODM für Bios Updates.
Es wird angegeben, das auf Grund der Architektur, GPZ Variant 2/Spectre jedoch sehr schwierig ausnutzbar ist. GPZ Variant 3/Meltdown betrifft AMD nicht.
Das Update kann über Windows Update oder manuell bezogen werden, jedoch erst ab dem Windows 10 1709 Creators Update. Der Support wird bis zu ersten Bulldozer Generation hinab geleistet (FX).
Spectre Mitigation Update
Today, AMD is providing updates regarding our recommended mitigations for Google Project Zero (GPZ) Variant 2 (Spectre) for Microsoft Windows users. These mitigations require a combination of processor microcode updates from our OEM and motherboard partners, as well as running the current and fully up-to-date version of Windows. For Linux users, AMD recommended mitigations for GPZ Variant 2 were made available to our Linux partners and have been released to distribution earlier this year.
As a reminder, GPZ Variant 1 (Spectre) mitigation is provided through operating system updates that were made available previously by AMD ecosystem partners. GPZ Variant 3 (Meltdown) does not apply to AMD because of our processor design.
While we believe it is difficult to exploit Variant 2 on AMD processors, we actively worked with our customers and partners to deploy the above described combination of operating system patches and microcode updates for AMD processors to further mitigate the risk. A whitepaper detailing the AMD recommended mitigation for Windows is available, as well as links to ecosystem resources for the latest updates.
Operating System Updates for GPZ Variant 2/Spectre
Microsoft is releasing an operating system update containing Variant 2 (Spectre) mitigations for AMD users running Windows 10 (version 1709) today. Support for these mitigations for AMD processors in Windows Server 2016 is expected to be available following final validation and testing.
AMD Microcode Updates for GPZ Variant 2/Spectre
In addition, microcode updates with our recommended mitigations addressing Variant 2 (Spectre) have been released to our customers and ecosystem partners for AMD processors dating back to the first “Bulldozer” core products introduced in 2011.
AMD customers will be able to install the microcode by downloading BIOS updates provided by PC and server manufacturers and motherboard providers. Please check with your provider for the latest updates.
We will provide further updates as appropriate on this site as AMD and the industry continue our collaborative work to develop solutions to protect users from security threats.
Mark Papermaster, Senior Vice President and Chief Technology Officer
Quelle: AMD, Microsoft KB4093112,