Today's CPU processors are extremely complex, and it is common to find security vulnerabilities. In the past, AMD Ryzen processors have been found to be relatively late, and Intel processors have been the hardest hit. However, this new vulnerability does not affect Intel, and AMD's Ryzen three generations have been affected.
The new vulnerability, named SQUIP, was created by? The PIC Leak team, in collaboration with a team from the University of Technology in Graz, Austria,It is related to the design of the processor's SMT multi-threaded architecture. In AMD's Zen architecture, each execution unit has its own scheduler queue.Will be affected by SQUIP, so that hackers have the opportunity to carry out side channel attacks and rights.
According to the research team's tests,The vulnerability allowed a hacker to break the RSA-4096 key in 38 minutes.
This vulnerability is mainly found on AMD processors, Intel cpus use a different architecture, there is no problem, Apple's M1 processor architecture is similar to AMD cpus, but does not support SMT multithreading, so it is not affected.
AMD numbered the vulnerability as MD-SB-1039,The affected processors include Zen1, Zen2, and ZEN3/3 + architecture processors,That is, Ryzen 2000 to Ryzen 6000 desktop version, mobile version, server version, the whole family were recruited.