FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

AMD CPUs -- Guest Memory Vulnerabilities

Affected packages
cpu-microcode-amd < 20240810

Details

VuXML ID 7d631146-5769-11ef-b618-1c697a616631
Discovery 2024-08-09
Entry 2024-08-10

AMD reports:

Researchers from IOActive have reported that it may be possible for an attacker with ring 0 access to modify the configuration of System Management Mode (SMM) even when SMM Lock is enabled. Improper validation in a model specific register (MSR) could allow a malicious program with ring0 access to modify SMM configuration while SMI lock is enabled, potentially leading to arbitrary code execution.

[source]

References

CVE Name CVE-2023-31315
URL https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7014.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.