• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

AMD Quietly Patched Four Major GPU Security Vulnerabilities with Radeon 20.1.1 Drivers

btarunr

Editor & Senior Moderator
Staff member
Joined
Oct 9, 2007
Messages
41,474 (8.23/day)
Location
Hyderabad, India
Processor AMD Ryzen 7 2700X
Motherboard ASUS ROG Strix B450-E Gaming
Cooling AMD Wraith Prism
Memory 2x 16GB Corsair Vengeance LPX DDR4-3000
Video Card(s) Palit GeForce RTX 2080 SUPER GameRock
Storage Western Digital Black NVMe 512GB
Display(s) BenQ 1440p 60 Hz 27-inch
Case Corsair Carbide 100R
Audio Device(s) Creative Sound Blaster Recon3D PCIe
Power Supply Cooler Master MWE Gold 650W
Mouse ASUS ROG Strix Impact
Keyboard Microsoft Sidewinder X4
Software Windows 10 Pro
If you haven't updated your AMD Radeon drivers in a while, here's one major reason to. The company secretly patched four major security vulnerabilities affecting Radeon GPUs, in its recent Adrenalin 20.1.1 drivers, with no mention of doing so in its changelog. Talos Intelligence reports four vulnerabilities, which are are chronicled under CVE-2019-5124, CVE-2019-5146, CVE-2019-5147 and CVE-2019-5183. This class of attacks exploits a vulnerability in the AMD Radeon driver file ATIDXX64.dll, which can lead to denial of service or even remote code execution. What makes things much more serious is that this attack vector can be used to exploit the host machine from a VM (tested with VMWare). It even seems possible to trigger the vulnerability from a web page, through WebGL (which allows running 3D applications on a remote website). The vulnerabilities were tested on Radeon RX 550 / 550 Series VMware Workstation 15 (15.5.0 build-14665864) with Windows 10 x64 as guest VM, but there is no reason to assume that the issue is limited to just RX 550 as the AMD shader compiler shares a common code basis for all recent DirectX 12 GPUs.

All vulnerabilities rely on a common attack vector: specially crafted shader code that exploits bugs in the shader compiler. Even though HLSL shader code looks similar to assembly, it actually is a relatively high-level language that gets optimized and compiled by the graphics driver. VMWare's graphics acceleration lets you run 3D graphics in virtual machines, by passing along rendering info to the host GPU and then funneling the output back into the VM. Since the shader code gets compiled using the graphics driver of the host OS, this creates interesting opportunities for attacks.



Normally you'd expect the shader compiler to properly check all code it compiles and simply reject things that aren't supposed to work.

  • The first vulnerability, CVE-2019-5146, is briefly described as "AMD ATI Radeon ATIDXX64.DLL MAD shader functionality denial-of-service vulnerability."
  • CVE-2019-5147 describes "AMD ATI Radeon ATIDXX64.DLL MOVC shader functionality denial-of-service vulnerability."
  • CVE-2019-5124 points to "AMD ATI Radeon ATIDXX64.DLL shader functionality constant buffer denial-of-service vulnerability."
  • CVE-2019-5183 talks about "AMD ATI Radeon ATIDXX64.DLL shader functionality VTABLE remote code execution vulnerability."
The first three CVEs are all variations of a similar approach, which lets malformed shader code lets crash the graphics driver, which in a VM situation would crash the VM software, taking all running virtual machines down with it.

The last vulnerability is more serious, because it potentially allows remote code execution. If you pass a properly crafted shader, you can execute vTable methods, which give you control over code flow, instead of crashing with an error. With further bug exploitation that would let you execute arbitrary code that you supply.

All four vulnerabilities have been patched with Adrenalin 20.1.1 drivers. AMD rival NVIDIA also battles security vulnerabilities in secret, but the company tends to be more transparent in mentioning vulnerabilities patched in its driver release-notes. AMD's release notes for 20.1.1, in contrast omit any mention of the vulnerabilities, so most people aren't even aware that they should update their drivers to fix a security issue.

View at TechPowerUp Main Site
 
Joined
May 12, 2015
Messages
79 (0.03/day)
Location
N/A
Processor Core i5 3570 @4.2 GHz
Motherboard MSI P67A-GD65 B3
Cooling Thermaltake Frio OCK
Memory G. SKILL ARES 2400 MHz DDR3 8 GB x 2 CL11-13-13
Video Card(s) RX 570 4GB (1375 MHz | 1750 MHz @ 1145 mV)
Storage SAMSUNG 850 PRO 256 GB
Display(s) PHILIPS 191EL
Case N/A
Audio Device(s) GAMDIAS HEPHAESTUS E1
Power Supply Thermaltake SMART 650W
Mouse Cougar Minos X2
Keyboard Corsair K70 MX RED
Software Windows 10 Pro x64
That's pretty disingenuous of AMD.
 
Joined
Mar 7, 2010
Messages
812 (0.20/day)
Location
Michigan
System Name Daves
Processor AMD Ryzen 3900x
Motherboard AsRock X570 Taichi
Cooling Enermax LIQMAX III 360
Memory 32 GiG Team Group B Die 3600
Video Card(s) Powercolor 5700 xt Red Devil
Storage Crucial MX 500 SSD and Intel P660 NVME 2TB for games
Display(s) Acer 144htz 27in. 2560x1440
Case Phanteks P600S
Audio Device(s) N/A
Power Supply Corsair RM 750
Mouse EVGA
Keyboard Corsair Strafe
Software Windows 10 Pro
Yeah, Nvidia gets such awful treatment:/
 
Joined
Oct 2, 2015
Messages
2,772 (1.30/day)
Location
Argentina
System Name Ciel / Yukino
Processor AMD Ryzen R5 5600X / Intel Core i3 5005U
Motherboard Asus Tuf Gaming B550 Plus / HP 240 G5
Cooling ID-Cooling 224-XT Basic / Stock
Memory 2x 8GB Geil Orion AMD Edition 3600MHz@3866MHz / 2x 4GB Hynix + Kingston DDR3L 1600MHz
Video Card(s) Asus Tuf 1650 SUPER OC / Intel HD 5500
Storage SSD ADATA FALCON 512GB PCIe3.0 + HDD WD 4TB / SSD Kingston A400 120GB SATA
Display(s) Samsung S22F350/ Integrated 1366x768
Case Cougar MX410 Mesh-G / Stock
Audio Device(s) Realtek ALC S1200A / Realtek ALC282
Power Supply Gamemax VP-500 / Power Brick
Mouse Logitech G203 / Elan Touchpad
Keyboard VSG Alnilam / Stock
Software Windows 10 x64 / Manjaro x64
Quick to laugh at Intel on vulnerabilities, but so quiet when it happens to them. What a joke.
 
Joined
Feb 23, 2019
Messages
2,714 (3.07/day)
Location
Poland
Processor Ryzen 7 3700X
Motherboard Gigabyte X570 Aorus Elite
Cooling BeQuiet Dark Rock 4
Memory 2x8 GB Crucial Ballistix Sport LT 3200 CL16 @ 3600 CL16
Video Card(s) EVGA 1060 6GB SSC
Storage SX8200 Pro 1 TB, Plextor M6Pro 256 GB, WD Blue 2TB
Display(s) Acer XB273GP
Case SilverStone Primera PM01 RGB
Power Supply SeaSonic Focus Plus Gold 750W
Mouse SteelSeries Rival 300
Keyboard MK Typist (Kailh Box White)
Someone would complain either way. Keeping it quiet wasn't a good move PR wise.
 
Joined
May 12, 2015
Messages
79 (0.03/day)
Location
N/A
Processor Core i5 3570 @4.2 GHz
Motherboard MSI P67A-GD65 B3
Cooling Thermaltake Frio OCK
Memory G. SKILL ARES 2400 MHz DDR3 8 GB x 2 CL11-13-13
Video Card(s) RX 570 4GB (1375 MHz | 1750 MHz @ 1145 mV)
Storage SAMSUNG 850 PRO 256 GB
Display(s) PHILIPS 191EL
Case N/A
Audio Device(s) GAMDIAS HEPHAESTUS E1
Power Supply Thermaltake SMART 650W
Mouse Cougar Minos X2
Keyboard Corsair K70 MX RED
Software Windows 10 Pro x64
So i take it 20.1.2 & 20.1.3 are not affected.

One would assume that the vulnerability fixes are carried on to newer drivers.
 
Joined
Jun 18, 2015
Messages
337 (0.15/day)
Location
Perth , West Australia
System Name schweinestalle
Processor AMD Ryzen 7 3700 X
Motherboard Asus Prime - Pro X 570 + Asus PCE-AC68 Dual Band PCI-E Wi-Fi Adapter
Cooling Standard Air
Memory Kingston HyperX 2 x 8 gb DDR 4 3200mhz
Video Card(s) AMD Radeon 5700 XT 8 GB Strix
Storage Intel SSD 240 gb Speed Demon & WD 240 SSD Blue & WD 250 SSD Green & Seagate Barracuda 1 TB Sata
Display(s) Asus XG 32 V ROG
Case Corsair AIR ATX
Audio Device(s) Realtech standard
Power Supply Corsair 850 Modular
Mouse CM Havoc
Keyboard Corsair Cherry Mechanical
Software Win 10
Benchmark Scores Unigine_Superposition 4K ultra 7582
Ive reverted back to Oct 19.10.01 drivers. less performance and firkin see through apps on desktop and game crashes with the Christmas whml update , and also todays beta is no better.

So begs the question is my pc vunerable …….lol as if there is so much knowledge I have hehe
 
Joined
Apr 21, 2010
Messages
417 (0.10/day)
System Name Home PC
Processor Ryzen 1600X
Motherboard Asus Prime X370 Pro
Cooling Thermaltake Contac Silent 12
Memory Dual channel G skill F4-3200C16-8GVKB
Video Card(s) XFX RX480 GTR - XFX Double Dissipation R9 290
Storage Samsung SSD Evo 120 - Adata SU80 256 - Adata SX6000 Lite 512 GB
Display(s) AoC 931wx (19in, 1680x1050)
Case Green Magnum Evo
Power Supply Green 650UK Plus
Mouse Trash A4tech OP-620D
Keyboard Old 12 years FOCUS FK-8100
ohh , I'm using VirtualBox Ver 5.2.34 and AMD 19.9.2.I'm sure they update VIrtualbox.damn now i have to upgrade AMD driver.
 
Joined
Nov 24, 2017
Messages
795 (0.59/day)
Location
Asia
Processor Intel Core i5 4590
Motherboard Gigabyte Z97x Gaming 3
Cooling Intel Stock Cooler
Memory 8GB(2x4GB) DDR3-800MHz [1600MT/s]
Video Card(s) XFX RX 560D 4GB
Storage Transcend SSD370S 128GB; Toshiba DT01ACA100 1TB
Display(s) Samsung S20D300 20" 768p TN
Case Cooler Master MasterBox E501L
Audio Device(s) Realtek ALC1150
Power Supply Corsair VS450
Mouse A4Tech N-70FX
Software Windows 10 Pro
Benchmark Scores BaseMark GPU : 250 Point in HD 4600
Joined
Jul 14, 2008
Messages
872 (0.18/day)
Location
Copenhagen, Denmark
System Name Ryzen/Laptop/htpc
Processor R9 3900X/i7 6700HQ/i7 2600
Motherboard AsRock X470 Taichi/Acer/ Gigabyte H77M
Cooling Corsair H115i pro with 2 Noctua NF-A14 chromax/OEM/Noctua NH-L12i
Memory G.Skill Trident Z 32GB @3200/16GB DDR4 2666 HyperX impact/24GB
Video Card(s) TUL Red Dragon Vega 56/Intel HD 530 - GTX 950m/ 970 GTX
Storage 970pro NVMe 512GB,Samsung 860evo 1TB, 3x4TB WD gold/Transcend 830s, 1TB Toshiba/Adata 256GB + 1TB WD
Display(s) Philips FTV 32 inch + Dell 2407WFP-HC/OEM/Sony KDL-42W828B
Case Phanteks Enthoo Luxe/Acer Barebone/Enermax
Audio Device(s) SoundBlasterX AE-5 (Dell A525)(HyperX Cloud Alpha)/mojo/soundblaster xfi gamer
Power Supply Seasonic focus+ 850 platinum (SSR-850PX)/165 Watt power brick/Enermax 650W
Mouse G502 Hero/M705 Marathon/G305 Hero Lightspeed
Keyboard G19/oem/Steelseries Apex 300
Software Win10 pro 64bit
why would any company advertise their problems?! and since they already fixed it this is a non-issue.
 
Joined
Nov 20, 2012
Messages
420 (0.13/day)
Location
Hungary
System Name masina
Processor AMD Ryzen 5 3600
Motherboard ASUS TUF B550M
Cooling Scythe Kabuto 3 + Arctic BioniX P120 fan
Memory 16GB (2x8) DDR4-3200 CL16 Crucial Ballistix
Video Card(s) Radeon Pro WX 2100 2GB
Storage 500GB Crucial MX500, 640GB WD Black
Display(s) AOC C24G1
Case SilentiumPC AT6V
Power Supply Seasonic Focus GX 650W
Mouse Logitech G203
Keyboard Cooler Master MasterKeys L PBT
Software Win 10 Pro
why would any company advertise their problems?! and since they already fixed it this is a non-issue.

To let users on older vulnerable driver packages know, that they might want to update...
 
Joined
Jul 14, 2008
Messages
872 (0.18/day)
Location
Copenhagen, Denmark
System Name Ryzen/Laptop/htpc
Processor R9 3900X/i7 6700HQ/i7 2600
Motherboard AsRock X470 Taichi/Acer/ Gigabyte H77M
Cooling Corsair H115i pro with 2 Noctua NF-A14 chromax/OEM/Noctua NH-L12i
Memory G.Skill Trident Z 32GB @3200/16GB DDR4 2666 HyperX impact/24GB
Video Card(s) TUL Red Dragon Vega 56/Intel HD 530 - GTX 950m/ 970 GTX
Storage 970pro NVMe 512GB,Samsung 860evo 1TB, 3x4TB WD gold/Transcend 830s, 1TB Toshiba/Adata 256GB + 1TB WD
Display(s) Philips FTV 32 inch + Dell 2407WFP-HC/OEM/Sony KDL-42W828B
Case Phanteks Enthoo Luxe/Acer Barebone/Enermax
Audio Device(s) SoundBlasterX AE-5 (Dell A525)(HyperX Cloud Alpha)/mojo/soundblaster xfi gamer
Power Supply Seasonic focus+ 850 platinum (SSR-850PX)/165 Watt power brick/Enermax 650W
Mouse G502 Hero/M705 Marathon/G305 Hero Lightspeed
Keyboard G19/oem/Steelseries Apex 300
Software Win10 pro 64bit
To let users on older vulnerable driver packages know, that they might want to update...
right... and you are complaining about it in a thread that informs you about the fixed vulnerabilities while you have a 1060 in your system specs.. makes a lot of sense.. in some universe.
 
Joined
Dec 16, 2017
Messages
1,816 (1.38/day)
Location
Buenos Aires, Argentina
System Name System V
Processor AMD Ryzen 5 3600
Motherboard Asus Prime X570-P
Cooling AMD Wraith Stealth // a bunch of 120 mm Xigmatek 1500 RPM fans (2 ins, 3 outs)
Memory 2x8GB Ballistix Sport LT 3200 MHz (BLS8G4D32AESCK.M8FE) (CL16-18-18-36)
Video Card(s) Gigabyte AORUS Radeon RX 580 8 GB
Storage SHFS37A240G / DT01ACA200 / WD20EZRX / MKNSSDTR256GB-3DL / LG BH16NS40 / ST10000VN0008
Display(s) LG 22MP55 IPS Display
Case NZXT Source 210
Audio Device(s) Logitech G430 Headset
Power Supply Corsair CX650M
Mouse Microsoft Trackball Optical 1.0
Keyboard HP Vectra VE keyboard (Part # D4950-63004)
Software Whatever build of Windows 10 is being served in Dev channel at the time.
Benchmark Scores Corona 1.3: 3120620 r/s Cinebench R20: 3355 FireStrike: 12490 TimeSpy: 4624
Ive reverted back to Oct 19.10.01 drivers. less performance and firkin see through apps on desktop and game crashes with the Christmas whml update , and also todays beta is no better.

So begs the question is my pc vunerable …….lol as if there is so much knowledge I have hehe
The vulnerabilities were disclosed during October, so it is safe to assume that drivers from that date are vulnerable too.

I think AMD should have issued a warning, not just add a line in the release notes, since this is a potential problem specially for users of WHQL versions, who tend to stay longer on a specific release before updating again.
 
Joined
Jan 6, 2013
Messages
288 (0.09/day)
OMG, thought AMD is perfect. I thought only Intel has vulnerabilities. My heart is pretty...broken right now.
Now, in a more serious note, I like how people are acting: "Oh my, so my PC is vulnerable now? What shall I do? Oh no!". Who gives a damn about your photos and sh*t?
Target PCs are government, banks, military, not the average Joe. But seems like the average Joe cares too much about this and govnmts probably don't give a damn. Which exactly the other way around.
Guys, there is no such thing as a safe chip. Chips have by design backdoors and various intricacies that, given enough time and interest from researchers (read people with no life), they will be found. And since Intel is basically in 90% of the PCs worldwide, you wouldn't expect them to focus on AMD, right? Fret not, I will spare you the surprise, AMD chips are as vulnerable if not more vulnerable than Intels. Intel has enough experience and safety requests from many of its partners that I don't think they just said, f*ck it, lets leave this chip full of holes. There are certain design trade-offs that you have to make and quite simply, given how complex these things are, it is impossible to make them without vulnerabilities. Amd is just a different design so it is not affected by the same things as Intel chips are. But this doesn't mean they are perfect. They just have different vulnerabilities that weren't researched yet.
So please, use your brains when reading news, because these guys (press) take us as fools. Which in part we are...unfortunately.
And stop this vulnerabilities panic, cause its getting boring now...really. Safety is a money making argument. Microsoft forces you to buy windows 10 cause it is safer. After 1-2 years they will make you buy windows 11 cause it is again...safer. These are just arguments that work on people that don't have a clue about how businesses work. They must create needs for us. To take your money.
 
Last edited:

Cheeseball

Not a Potato
Supporter
Joined
Jan 2, 2009
Messages
1,495 (0.33/day)
Location
Pittsburgh, PA
System Name Custom AMD Rig
Processor AMD Ryzen™ 7 3800X
Motherboard ASUS TUF GAMING X570-PLUS (WI-FI)
Cooling EVGA CLC 280mm AIO Liquid Cooler
Memory G.SKILL TridentZ 32GB (8GBx4) F4-3200C16-8GTZR
Video Card(s) EVGA GeForce RTX 3080 FTW3 ULTRA GAMING 10GB
Storage 250GB Samsung 970 EVO NVMe, 2TB Inland Premium NVMe, 1TB Crucial MX500 SATA, 4TB WD Blue SATA
Display(s) Acer Nitro XV340CK Pbmiipphzx 34" UWQHD 1440p, LG 27GN850-B UltraGear 27" 1440p 144 Hz
Case NZXT H510i Matte White
Audio Device(s) Kanto Audio YU2 and SUB8 Desktop Speakers and Subwoofer, Blue Yeti
Power Supply Corsair RMx Series RM750x 750W
Mouse Kingston HyperX Pulsefire Haste
Keyboard Kingston HyperX Alloy Origins Core
Software Windows 10 Pro 64-bit 20H2
The first three vulnerabilities cause the driver to crash, the last one allows potential payloads to be executed through a VM.

This is not too critical considering the general userbase of Radeon Software. At most this would affect workstations that have any consumer-level Radeon (and not Radeon Pro or Instinct). Unless the ATIDXX64.DLL in Radeon Software is the same one in the PRO drivers.
 
Joined
Jul 14, 2008
Messages
872 (0.18/day)
Location
Copenhagen, Denmark
System Name Ryzen/Laptop/htpc
Processor R9 3900X/i7 6700HQ/i7 2600
Motherboard AsRock X470 Taichi/Acer/ Gigabyte H77M
Cooling Corsair H115i pro with 2 Noctua NF-A14 chromax/OEM/Noctua NH-L12i
Memory G.Skill Trident Z 32GB @3200/16GB DDR4 2666 HyperX impact/24GB
Video Card(s) TUL Red Dragon Vega 56/Intel HD 530 - GTX 950m/ 970 GTX
Storage 970pro NVMe 512GB,Samsung 860evo 1TB, 3x4TB WD gold/Transcend 830s, 1TB Toshiba/Adata 256GB + 1TB WD
Display(s) Philips FTV 32 inch + Dell 2407WFP-HC/OEM/Sony KDL-42W828B
Case Phanteks Enthoo Luxe/Acer Barebone/Enermax
Audio Device(s) SoundBlasterX AE-5 (Dell A525)(HyperX Cloud Alpha)/mojo/soundblaster xfi gamer
Power Supply Seasonic focus+ 850 platinum (SSR-850PX)/165 Watt power brick/Enermax 650W
Mouse G502 Hero/M705 Marathon/G305 Hero Lightspeed
Keyboard G19/oem/Steelseries Apex 300
Software Win10 pro 64bit
OMG, thought AMD is perfect. I thought only Intel has vulnerabilities. My heart is pretty...broken right now.
Now, in a more serious note, I like how people are acting: "Oh my, so my PC is vulnerable now? What shall I do? Oh no!". Who gives a damn about your photos and sh*t?
Target PCs are government, banks, military, not the average Joe. But seems like the average Joe cares too much about this and govnmts probably don't give a damn. Which exactly the other way around.
Guys, there is no such thing as a safe chip. Chips have by design backdoors and various intricacies that, given enough time and interest from researchers (read people with no life), they will be found. And since Intel is basically in 90% of the PCs worldwide, you wouldn't expect them to focus on AMD, right? Fret not, I will spare you the surprise, AMD chips are as vulnerable if not more vulnerable than Intels. Intel has enough experience and safety requests from many of its partners that I don't think they just said, f*ck it, lets leave this chip full of holes. There are certain design trade-offs that you have to make and quite simply, given how complex these things are, it is impossible to make them without vulnerabilities. Amd is just a different design so it is not affected by the same things as Intel chips are. But this doesn't mean they are perfect. They just have different vulnerabilities that weren't researched yet.
So please, use your brains when reading news, because these guys (press) take us as fools. Which in part we are...unfortunately.
And stop this vulnerabilities panic, cause its getting boring now...really. Safety is a money making argument. Microsoft forces you to buy windows 10 cause it is safer. After 1-2 years they will make you buy windows 11 cause it is again...safer. These are just arguments that work on people that don't have a clue about how businesses work. They must create needs for us. To take your money.
dude... the post is about gpus. also, since when more than a decade of intels shit shortcuts that put speed over security is comparable to something like this?! i agree with your general point though, security is basically used by companies to get more money from us and trolls to polarize the audience. and yes, all companies are guilty, just not to the same degree.
 
Joined
Jul 19, 2017
Messages
70 (0.05/day)
OMG, thought AMD is perfect. I thought only Intel has vulnerabilities. My heart is pretty...broken right now.
Now, in a more serious note, I like how people are acting: "Oh my, so my PC is vulnerable now? What shall I do? Oh no!". Who gives a damn about your photos and sh*t?
Target PCs are government, banks, military, not the average Joe. But seems like the average Joe cares too much about this and govnmts probably don't give a damn. Which exactly the other way around.
Guys, there is no such thing as a safe chip. Chips have by design backdoors and various intricacies that, given enough time and interest from researchers (read people with no life), they will be found. And since Intel is basically in 90% of the PCs worldwide, you wouldn't expect them to focus on AMD, right? Fret not, I will spare you the surprise, AMD chips are as vulnerable if not more vulnerable than Intels. Intel has enough experience and safety requests from many of its partners that I don't think they just said, f*ck it, lets leave this chip full of holes. There are certain design trade-offs that you have to make and quite simply, given how complex these things are, it is impossible to make them without vulnerabilities. Amd is just a different design so it is not affected by the same things as Intel chips are. But this doesn't mean they are perfect. They just have different vulnerabilities that weren't researched yet.
So please, use your brains when reading news, because these guys (press) take us as fools. Which in part we are...unfortunately.
And stop this vulnerabilities panic, cause its getting boring now...really. Safety is a money making argument. Microsoft forces you to buy windows 10 cause it is safer. After 1-2 years they will make you buy windows 11 cause it is again...safer. These are just arguments that work on people that don't have a clue about how businesses work. They must create needs for us. To take your money.
You are SO clever, according your own judgement.
 
Joined
Aug 20, 2007
Messages
15,626 (3.07/day)
System Name Pioneer
Processor Ryzen R7 5800X
Motherboard GIGABYTE Aorus Elite X570
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory G.SKILL Ripjaws V Series 64GB (4 x 16GB) DDR4-3200
Video Card(s) EVGA GeForce RTX 3070 FTW3
Storage 2x Mushkin Pilot-E 2TB NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) VGA HDMI->Panasonic SC-HTB20/Schiit Modi MB/Asgard 2 DAC/Amp to AKG Pro K7712 Headphones
Power Supply Seasonic Prime Titanium 750W
Mouse Razer Deathadder v2
Keyboard WASD CODE 104-Key w/ Cherry MX Green Keyswitches, Doubleshot Vortex PBT White Transluscent Keycaps
Software Windows 10 Enterprise (Product of work, yes it's legit)
Benchmark Scores www.3dmark.com/fs/25631365 www.3dmark.com/spy/20539287 www.3dmark.com/pr/1054199

Notice the difference? NVIDIA puts it in the changelog.

You are SO clever, according your own judgement.

Yeah, love how he refers to security researchers as "people with no life"

Good to know my job is appreciated.
 
Joined
Nov 4, 2005
Messages
10,793 (1.88/day)
System Name MoFo 2
Processor AMD PhenomII 1100T @ 4.2Ghz
Motherboard Asus Crosshair IV
Cooling Swiftec 655 pump, Apogee GT,, MCR360mm Rad, 1/2 loop.
Memory 8GB DDR3-2133 @ 1900 8.9.9.24 1T
Video Card(s) HD7970 1250/1750
Storage Agility 3 SSD 6TB RAID 0 on RAID Card
Display(s) 46" 1080P Toshiba LCD
Case Rosewill R6A34-BK modded (thanks to MKmods)
Audio Device(s) ATI HDMI
Power Supply 750W PC Power & Cooling modded (thanks to MKmods)
Software A lot.
Benchmark Scores Its fast. Enough.
It's a driver level vulnerability, and if AMD and MS wanted I'm sure they could push the update of WHQL drivers, mostly on MS though as just imagine the outcry if AMD could push a notification or force a driver update...... People would lose their freaking minds.


Also, the difference here isn't a unsecure chip, but a function of a Browser viewing a webpage with OpenGL accelerated code that exposed a vulnerability due to how a driver handles that code. And it's been fixed without a BIOS update and performance drop. So nothing like Intel.
 
Joined
May 12, 2015
Messages
79 (0.03/day)
Location
N/A
Processor Core i5 3570 @4.2 GHz
Motherboard MSI P67A-GD65 B3
Cooling Thermaltake Frio OCK
Memory G. SKILL ARES 2400 MHz DDR3 8 GB x 2 CL11-13-13
Video Card(s) RX 570 4GB (1375 MHz | 1750 MHz @ 1145 mV)
Storage SAMSUNG 850 PRO 256 GB
Display(s) PHILIPS 191EL
Case N/A
Audio Device(s) GAMDIAS HEPHAESTUS E1
Power Supply Thermaltake SMART 650W
Mouse Cougar Minos X2
Keyboard Corsair K70 MX RED
Software Windows 10 Pro x64

And AMD didn't even bother to warn or notify anybody hence being disingenuous. So what's your point?

I am not sure why some users are telling people that not notifying the existence of these vulnerabilities or patching them under the hood without any disclosure doesn't matter. I am sure if the same things was done by intel or nvidia, they'd be the first ones to cry foul.

Also, the difference here isn't a unsecure chip, but a function of a Browser viewing a webpage with OpenGL accelerated code that exposed a vulnerability due to how a driver handles that code. And it's been fixed without a BIOS update and performance drop. So nothing like Intel.

It is yet to be determined whether there's a performance penalty or not. For example, the original Zen CPUs had software mitigation in place, that had very little impact on the performance but the problem was there. They addressed it at a hardware level with Zen+ so that the software mitigation was no longer necessary.

why would any company advertise their problems?! and since they already fixed it this is a non-issue.

That's probably the most intelligent response I have yet to come across in this thread. Yeah, why does AMD even bother to include a release note or a changelog to begin with, they should totally do away with that.
 
Last edited:
Joined
Aug 20, 2007
Messages
15,626 (3.07/day)
System Name Pioneer
Processor Ryzen R7 5800X
Motherboard GIGABYTE Aorus Elite X570
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory G.SKILL Ripjaws V Series 64GB (4 x 16GB) DDR4-3200
Video Card(s) EVGA GeForce RTX 3070 FTW3
Storage 2x Mushkin Pilot-E 2TB NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) VGA HDMI->Panasonic SC-HTB20/Schiit Modi MB/Asgard 2 DAC/Amp to AKG Pro K7712 Headphones
Power Supply Seasonic Prime Titanium 750W
Mouse Razer Deathadder v2
Keyboard WASD CODE 104-Key w/ Cherry MX Green Keyswitches, Doubleshot Vortex PBT White Transluscent Keycaps
Software Windows 10 Enterprise (Product of work, yes it's legit)
Benchmark Scores www.3dmark.com/fs/25631365 www.3dmark.com/spy/20539287 www.3dmark.com/pr/1054199
It is yet to be determined whether there's a performance penalty or not.

This is a software shader compiler bug, no gpu hardware is involved. Hence no penalty.
 
Joined
Jun 18, 2015
Messages
337 (0.15/day)
Location
Perth , West Australia
System Name schweinestalle
Processor AMD Ryzen 7 3700 X
Motherboard Asus Prime - Pro X 570 + Asus PCE-AC68 Dual Band PCI-E Wi-Fi Adapter
Cooling Standard Air
Memory Kingston HyperX 2 x 8 gb DDR 4 3200mhz
Video Card(s) AMD Radeon 5700 XT 8 GB Strix
Storage Intel SSD 240 gb Speed Demon & WD 240 SSD Blue & WD 250 SSD Green & Seagate Barracuda 1 TB Sata
Display(s) Asus XG 32 V ROG
Case Corsair AIR ATX
Audio Device(s) Realtech standard
Power Supply Corsair 850 Modular
Mouse CM Havoc
Keyboard Corsair Cherry Mechanical
Software Win 10
Benchmark Scores Unigine_Superposition 4K ultra 7582
The vulnerabilities were disclosed during October, so it is safe to assume that drivers from that date are vulnerable too.

I think AMD should have issued a warning, not just add a line in the release notes, since this is a potential problem specially for users of WHQL versions, who tend to stay longer on a specific release before updating again.

honestly these last few driver updates havnt worked out for my machine , usually the updates do nothing but these ones are actually crashing programes , lol its funny i reckon.
i have to turn off free3sync to get smooth flicker free gamin on cheap games from steam. maybe the hardware is too advanced for the software , I don't know god damn it (ellen ripley)
 
Top