Tag Archives: Zen 3

News

AMD’s Zen 3 & Zen 4 CPUs Are At Risk of Exploitations Thanks to New “Inception” Vulnerability

Leave a comment

Researchers at ETH Zurich have identified a series of vulnerabilities in AMD’s CPUs. The vulnerabilities have been identified in CPUs with the Zen 3 and Zen 4 architecture in particular and are present across the board in both desktop and laptop CPUs and APUs with the architecture.

The vulnerability, identified now as “Inception”, takes advantage of speculative execution, a technique where a computer predicts and performs operations it anticipates needing in the future. Using an attack method called Training in Transient Execution (TTE), the affected CPUs can be manipulated to believe that they have seen a certain set of instructions before even if it has never happened before.

In the simplest of terms, the exploit acts exactly like how Leonardo DiCaprio and his team did in the movie “Inception”. Similar to how they were able to plant an idea to retrieve information, the vulnerability in AMD CPUs can do the same thing.

In fact, XDA Developers described that “Inception” takes its name from the movie of the same title, where the central concept involves implanting an idea in someone’s dream. In the exploit context, researchers metaphorically implant an “idea” into the CPU during its “dream-like” state, causing it to execute incorrect instructions. This manipulation of the CPU’s control flow is the core mechanism exploited by Inception.

amd ryzen 3000

Exploiting A Kernel Memory Breach

The vulnerability poses a serious security threat as “Inception” is an end-to-end exploit that can covertly leak sensitive information from Zen 3 and Zen 4 processors. The exploit can access confidential kernel memory, including sensitive files like “/etc/shadow” on Linux systems. This file holds hashed user account passwords, typically safeguarded and accessible only to the root user.

According to XDA Developers, with a leakage rate of up to 39 bytes per second, Inception has the capability to retrieve these passwords within 40 minutes.

Exploitation of Speculative Execution

The workings of Inception draw parallels to a similar exploit named Zenbleed. ETH Zurich researchers leveraged the TTE technique to craft an attack capable of infiltrating AMD Zen CPUs. This involves manipulating speculative execution to carry out actions that may not be immediately necessary, a strategy often used to optimise processing.

Inception: leaking the root hash from /etc/shadow on AMD Zen 4

A central component in this attack is the Branch Target Buffer (BTB) and the Return Stack Buffer (RSB). Inception disrupts branch prediction during the transient window by introducing fresh predictions into the branch predictor. This action creates more powerful transient windows, which can then be exploited to overflow the Return Stack Buffer. Ultimately, this allows Inception to take control of the CPU.

Preventing Exploitation and Mitigation Strategy

AMD has acknowledged the vulnerability in a recent bulletin. The company has released a µcode patch for the affected processors which can be applied via a BIOS update.

According to XDA Developers, like Intel’s “Spectre” vulnerability, effective mitigation strategies remain challenging. One proposed mitigation approach involves flushing the branch predictor during context switches. However, this could inflict significant performance degradation.

If you are using one of the following processors, it would be best to check for a BIOS update.

Desktop CPUs & APUs:

  • 3rd & 4th Gen AMD EPYC CPUs
  • Ryzen 5000 & 4000 Series Desktop Processors (including CPUs like Ryzen 5 5600G or Ryzen 7 4700G APUs)
  • Ryzen 7000 Series Desktop Processors
  • Ryzen Threadripper PRO 5000WX Series Processors

Mobile CPUs:

  • Ryzen 5000 Series Mobile Processors
  • Ryzen 6000 Series Processors (with Radeon Graphics)
  • Ryzen 7035 Series Processors (with Radeon Graphics)
  • Ryzen 7030 Series Processors (with Radeon Graphics)
  • Ryzen 7040 Series Processors (with Radeon Graphics)
  • Ryzen 7045 Series Processors
Editorial, Podcast

Tech & Tonic Special with Paige Shi of AMD

Video Leave a comment

AMD has been on a roll with a multitude of releases and powerful innovations that are changing the landscape of the semiconductor industry. AMD is a company that has made its bets 5 years ago in high-performance computing and is now starting to see them come to fruition. With the announcement of their RDNA 2 platform and Zen architecture, they are delivering more performance to consumers for less power. These innovations continue to create waves in the industry with the company seeing its technologies adopted in gaming consoles to cars. 

AMD’s recent announcements have proven that the company is making strides; not only in the consumer and gaming space but also in high-performance computing. The company has even announced their take on graphic supersampling with the FidelityFX Super Resolution. So, what’s next for AMD? 

We’re sitting down with Paige Shi, Consumer Lead for Asia Pacific over at AMD to find out what’s happening at AMD and how the company is adapting to the new normal, how it has affected consumer behaviour and also what we can expect from the company in the future!

Business, Computers, Gaming, News

AMD Ryzen 4000 Desktop Series is Here! No Zen 3 Yet Though.

Leave a comment

AMD finally released their highly anticipated latest Ryzen processor platform for desktops. We mentioned ‘desktop’ specifically because AMD has launched their Ryzen 4000 series for mobile computing earlier this year. So, here it is, the new AMD Ryzen 4000 series for desktop alongside AMD’s latest Athlon 3000 series offering.

MODELCORES / THREADSTDP (Watts)BOOST9/BASE FREQ. (GHz)GPU CORESCACHE (MB)
AMD Ryzen™ 7 4700G8C/16T65WUp to 4.4 / 3.6 GHz812 MB
AMD Ryzen™ 7 4700GE8C/16T35WUp to 4.3 / 3.1 GHz812 MB
AMD Ryzen™ 5 4600G6C/12T65WUp to 4.2 / 3.7 GHz711 MB
AMD Ryzen™ 5 4600GE6C/12T35WUp to 4.2 / 3.3 GHz711 MB
AMD Ryzen™ 3 4300G4C/8T65WUp to 4.0 / 3.8 GHz66 MB
AMD Ryzen™ 3 4300GE4C/8T35WUp to 4.0 / 3.5 GHz66 MB
Athlon™ Gold 3150G4C / 4T65W​3.9 GHz36 MB
Athlon™ Gold 3150GE4C / 4T35W3.8 GHz36 MB
Athlon™ Silver 3050GE2C / 4T35W3.4 GHz35 MB
Source: AMD

This is not the end of the story though. Keen eyed readers will note that we did say that Zen 3 is not here yet (do not look at us, we are as surprised as you are). That is because the AMD Ryzen 4000 series we see here only packs AMD’s Zen2 architecture.

At least you are still getting AMD’s Radeon graphics integrated in the CPU. The previous AMD Ryzen 3000 series came with AMD’s highly acclaimed Radeon Vega graphics. We can safely expect the AMD Ryzen 4000 series for desktop systems that was just announced to come with AMD’s Radeon Vega graphics too in that case. Until they reveal it though, we do not know.

Source: AMD

They also touted that the new AMD Ryzen 4000 series for desktop performs 2.5x better in multi-threaded applications. There are some improvements on single-thread performance too, which is nice. With the integrated GPU, there are some expected added performance there too. All this means that this should perform better in video editing and rendering works and in games. With the integrated GPU, you can even properly game without having a dedicated GPU.

Alongside the regular consumer range of Ryzen 4000, AMD also announced the AMD Ryzen 4000 series with PRO technologies. Like the notebook range of AMD Ryzen 4000 Pro series, this one is made for AMD’s business customers. Like the mobile version as well, the desktop variant gets all AMD’s security features with the PRO series CPUs.

MODELCORES/ THREADSTDP (Watts)BOOST9/ BASE FREQ. (GHz)Graphics CoresL2/L3 CACHE (MB)
AMD Ryzen™ 7 PRO 4750G8C/16T65WUp to 4.4/3.6 GHz812MB
AMD Ryzen™ 7 PRO 4750GE8C/16T35WUp to 4.3/3.1 GHz812MB
AMD Ryzen™ 5 PRO 4650G6C/12T65WUp to 4.2/3.7 GHz711MB
AMD Ryzen™ 5 PRO 4650GE6C/12T35WUp to 4.2/3.3 GHz711MB
AMD Ryzen™ 3 PRO 4350G4C/8T65WUp to 4.0/3.8 GHz66MB
AMD Ryzen™ 3 PRO 4350GE4C/8T35WUp to 4.0/3.5 GHz66MB
AMD Athlon™ Gold PRO 3150G4C/4T65WUp to 3.9/3.5 GHz36MB
AMD Athlon™ Gold PRO 3150GE4C/4T35WUp to 3.8/3.3 GHz36MB
AMD Athlon™ Silver PRO 3125GE2C/4T35WUp to 3.4/3.4 GHz35MB
Source: AMD

What Do You Mean No Zen3?

The AMD Ryzen 4000 CPU has been touted and teased with a certain upcoming Zen3 architecture that is supposed to be way more powerful than what we see on the older generation AMD Ryzen 3000 series with Zen2. With the new AMD Ryzen 4000 desktop that just launched, it seems that AMD is not including the Zen3 architecture within the CPU just yet. They did not mention also if the architecture within the Ryzen 4000 series is Zen2+, which leaves us assuming that it is still the same Zen2 application that was on the Ryzen 3000 series.

Still, there are some performance gains on all the platforms they announced, including the Athlon offerings. While they may not be as big of a performance leap we expect from the Ryzen 4000 series, any improvements is welcome. The integrated graphics may also help with budget gaming and editing rigs.

Hope for Zen3 Still Alive with Big Navi

Source: AMD

Here is the kicker for the AMD Ryzen 4000 series for desktop PCs that was just announced though; you cannot buy them. To be specific, you cannot buy them on their own. You can only get these processors from OEMs in their desktop system offerings. AMD is teasing Lenovo and HP to be the first to produce a desktop system with the newly launched AMD Ryzen 4000 series somewhere after 21st July 2020.

That also creates a room and a gap for the enthusiasts’ market where Zen3 is yet to be available. Big Navi is also expected to be launched and announced later in 2020. With that also we expect AMD to announced another variant of the AMD Ryzen 4000 series that is available to consumers as an individual part and devoid of any integrated graphics. In that, we hope that the AMD Ryzen 4000 that we expect to launch with Radeon’s Big Navi to come with Zen3 or at least a Zen2+.