AMD Security Bulletin AMD-SB-7005

Vulnerability Disclosure:

Supermicro is aware of the Return Address Predictor, a side channel vulnerability, also known as "INCEPTION." This issue affects AMD EPYC™ 3rd Gen and 4th Gen Processors.

CVE:

CVE-2023-20569
Severity: Medium

Findings:

A side channel attack known as ‘Inception’ may allow an attacker to influence branch prediction, potentially leading to information disclosure.

Affected products:

Supermicro BIOS in the H12 and select H13 motherboards

Remediation:

All affected Supermicro motherboard SKUs will require a BIOS update to mitigate this potential vulnerability.
An updated BIOS firmware had been created to mitigate this potential vulnerability. Supermicro is currently testing and validating affected products. Please check Release Notes for the resolution.

Resources:

AMD-SN7005
- CVE-2023-20569

机架服务器

1U 双处理器

2U 双处理器

单处理器

多处理器

产品系列

GPU 服务器

8U GPU 系列

4U GPU 系列

2U GPU 系列

1U GPU 系列

Twin 服务器

FlexTwin™

BigTwin®

GrandTwin®

TwinPro®

Twin

FatTwin®

刀片服务器

SuperBlade®

MicroBlade®

MicroCloud

存储系列服务器

所有存储系列产品

全闪存 NVMe

顶部装载存储

JBOF

企业优化的存储

主板

机箱

SuperRack®

辅助配件

Edge & Telecom Servers

Fanless Edge Systems

Compact Edge Systems

Outdoor Edge Systems

1U Edge Network Systems

5G/Telecom Systems

嵌入式组件

嵌入式/物联网主板

嵌入式系統机箱

交换机

网路卡

超级工作站

Liquid-Cooled AI Development Platform

单处理器

双处理器

Supero™ 游戏解決方案

人工智能基础设施

人工智能超级集群

行业人工智能解决方案

边缘人工智能

人工智能存储

NVIDIA 解决方案

AMD 解决方案

Intel 解决方案

HPC

机架解决方案

液体冷却

数据管理

人工智能存储

软件定义存储和內存

超融合基础架构

Veeam

企业应用和数据分析

数据工程

数据库和 ERP

Microsoft

云端和虚拟化

Cloud Service Providers (CSPs)

Google Distributed Cloud

Canonical OpenStack

Red Hat OpenStack

Kubernetes

虚拟桌面

5G、Edge Computing 和 IoT

5G and Telecom Solutions

Rakuten Symphony

IoT Edge Solutions

边缘人工智能