BIOS Update for Security Vulnerabilities: AMD Zen3 and Zen4 CPU
Giga Computing Technology Co., Ltd. acknowledges the security vulnerabilities affecting GIGABYTE’s server, workstation, and motherboard products using the following processors and users are suggested updating to the latest versions:
• 3rd Gen AMD EPYC™ Processors (Target Apr 2024)
• 4th Gen AMD EPYC™ Processors (Released)
• AMD Ryzen™ 5000 Series Desktop Processors (with Radeon™ Graphics) (By request)
• AMD Ryzen™ 7000 Series Desktop Processors (Released)
• AMD Ryzen™ Threadripper™ PRO 5000WX Processors (Target May 2024)
The vulnerabilities are listed below. Updated BIOS versions to address the threats will be available on all affected product pages.
Common Vulnerabilities or Exposures (CVEID): CVE-2023-20569
Severity Rating (CVSSv3.1): 4.7, Medium
Description: A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure.
AMD Security Bulletin ID: AMD-SB-7005
*The release schedule may be adjusted without further notification. Please check this page or contact technical support for any future updates.
*Please navigate to the "Support" section of the relevant product page to download the updated BIOS.
*For any further assistance regarding this issue please contact your Giga Computing sales representative, or create a new support ticket at https://esupport.gigabyte.com