A newly disclosed security vulnerability called FP-DSS (Floating Point Divider State Sampling) affects AMD Zen 1 and Zen 1+ processors. The transient execution bug allows a local user-privileged attacker to potentially leak sensitive data through floating point divisor units. AMD considers the risk low since FP operations in privileged code are uncommon, and the vulnerability does not affect newer Zen architectures. The Linux kernel has already been patched — the mitigation simply requires setting bit 9 of MSR C001_1028 to 1 — and the fix is queued for Linux 7.1 with backports to stable kernel versions coming soon.
Sort: