The processor producer AMD has disclosed a high-risk safety vulnerability affecting sure graphics drivers for Radeon graphics chips. The vulnerability tracked as CVE-2023-20598, impacts each built-in GPUs in AMD processors and devoted Radeon GPUs utilized in graphics playing cards.
In response to AMD’s advisory, the vulnerability is attributable to improper entry management within the AMD Radeon kernel driver. This might enable an attacker to realize elevated privileges and execute arbitrary code if they will authenticate regionally on an affected system.
The susceptible drivers have an effect on Radeon GPUs within the RX 5000, 6000 and 7000 collection. AMD has launched patched drivers, together with Radeon Software program Adrenalin model 23.9.2. Patches for AMD Ryzen chips with built-in GPUs are additionally accessible within the newest drivers.
The listing of affected processors is a bit complicated, however AMD Ryzen of the 6000 collection in addition to the 7000 collection with built-in GPU are susceptible.
In response to AMD’s advisory, Ryzen 6000 and 7000 collection processors are affected, in addition to Ryzen 7020, 7035, 7040 and 7045 fashions. AMD is urging customers to replace to the most recent patched drivers as quickly as potential to mitigate the danger.
Whereas AMD chips have suffered side-channel assaults previously, vulnerabilities in graphics drivers are much less frequent. The disclosure serves as an essential reminder to maintain GPU drivers up-to-date to forestall potential native privilege escalation. AMD has offered patches, however customers ought to apply them promptly given the excessive severity.
