AMD Security Bulletin AMD-SB-1041, June 2024

Vulnerability Disclosure:

Supermicro is aware of the potential weakness in AMD SPI protection features. This issue affects AMD EPYC™ 1st, 2nd and 3rd Gen Processors.

CVE:

CVE-2022-23829
Severity: High

Findings:

There is a potential weakness in SPI protection features in setups where an AMD CPU (includes CPUs in an APU) is connected to ROM through a SPI connection. In this setup, system BIOS uses SPI Protection features to limit ROM write privileges to the BIOS/OEM Controlled SMM handler.

Affected products:

Supermicro BIOS in the H11, H12 motherboards

AMD Motherboard Generation	BIOS Version with the fix
H11 - Naples/Rome	v 2.8
H12 - Rome/Milan	v 2.8

Remediation:

All affected Supermicro motherboard SKUs will require a BIOS update to mitigate this potential vulnerability.
An updated BIOS firmware had been created to mitigate this potential vulnerability. Supermicro is currently testing and validating affected products. Please check Release Notes for the resolution.

Resources:

AMD-SN-1041
- CVE-2022-23829

机架服务器

1U 双处理器

2U 双处理器

单处理器

多处理器

产品系列

GPU 服务器

8U GPU 系列

4U GPU 系列

2U GPU 系列

1U GPU 系列

Twin 服务器

FlexTwin™

BigTwin®

GrandTwin®

TwinPro®

Twin

FatTwin®

刀片服务器

SuperBlade®

MicroBlade®

MicroCloud

存储系列服务器

所有存储系列产品

全闪存 NVMe

顶部装载存储

JBOF

企业优化的存储

主板

机箱

SuperRack®

辅助配件

Edge & Telecom Servers

Fanless Edge Systems

Compact Edge Systems

Outdoor Edge Systems

1U Edge Network Systems

5G/Telecom Systems

嵌入式组件

嵌入式/物联网主板

嵌入式系統机箱

交换机

网路卡

超级工作站

Liquid-Cooled AI Development Platform

单处理器

双处理器

Supero™ 游戏解決方案

人工智能基础设施

人工智能超级集群

行业人工智能解决方案

边缘人工智能

人工智能存储

NVIDIA 解决方案

AMD 解决方案

Intel 解决方案

HPC

机架解决方案

液体冷却

数据管理

人工智能存储

软件定义存储和內存

超融合基础架构

Veeam

企业应用和数据分析

数据工程

数据库和 ERP

Microsoft

云端和虚拟化

Cloud Service Providers (CSPs)

Google Distributed Cloud

Canonical OpenStack

Red Hat OpenStack

Kubernetes

虚拟桌面

5G、Edge Computing 和 IoT

5G and Telecom Solutions

Rakuten Symphony

IoT Edge Solutions

边缘人工智能