AMD’s Sinkclose Fix: A Patch for the New, a Problem for the Old
AMD has released security updates to address the "Sinkclose" vulnerability in its processors but has excluded older models like Ryzen 1000-3000 series and Threadripper 1000-2000 series, leaving them vulnerable. The decision has raised concerns about the security of systems still using these processors, potentially damaging customer trust and brand loyalty.
Gyana Swain writes for CSO
While AMD has rolled out mitigation options for most of its recent processors, including all generations of EPYC data center processors, the latest Threadripper models, and Ryzen processors, the company has decided not to extend these updates to its Ryzen 1000, 2000, and 3000 series processors or its Threadripper 1000 and 2000 models.
The "Sinkclose" vulnerability, although severe and exploitable by sophisticated attackers, has not yet been reported as exploited. The lack of patches for older processors could result in negative press, legal implications, and compliance challenges for AMD.