Reply to post: Re: Downgrade attack?

CTS who? AMD brushes off chipset security bugs with firmware patches

whitepines Silver badge

Re: Downgrade attack?

@ Byron "Jito463"

I don't think I did a good job of explaining the concern, apologies for that. Since the vulnerabilities require root anyway to be exploited, I don't think the main concerns change for the PSP part of the patches. For the ASMedia stuff, which affects a whole ton of systems including Intels', the patches may at least have some positive effect.

I keep forgetting there were a bunch of additional claims beyond arbitrary code execution on the PSP. That's the only one that scares me; anyone with any sense on security doesn't send secure data unencrypted over the chipset (i.e to disk, network, etc.) anyway.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon


Biting the hand that feeds IT © 1998–2019