{"id":3703,"date":"2021-11-12T18:48:22","date_gmt":"2021-11-12T13:18:22","guid":{"rendered":"https:\/\/xiarch.com\/blog\/?p=3703"},"modified":"2021-11-12T18:48:24","modified_gmt":"2021-11-12T13:18:24","slug":"amd-fixes-multiple-windows-10-graphic-driver-security-flaws","status":"publish","type":"post","link":"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/","title":{"rendered":"AMD fixes Multiple Windows 10 Graphic Driver Security Flaws"},"content":{"rendered":"\n
AMD has resolved a long list of security vulnerabilities found in its graphics driver for Windows 10 devices, permitting threat actors to run arbitrary code and raise the privileges on vulnerable systems. The probable impact and the bugs\u2019 severity vary, with AMD tagging more than a dozen flaws as high severity.<\/p><\/p>\n\n\n\n
\u201cIn a extensive research of the AMD Escape calls, a probable set of weakness in several APIs was founded, which could result in escalation of privileges, denial of service, data disclosure, KASLR bypass, or arbitrary write to kernel memory,\u201d AMD explained.<\/p><\/p>\n\n\n\n
The complete list of patched flaws includes:<\/p><\/p>\n\n\n\n
An AMD insides person was not available to facilitate a disclosure timeline when contacted by our security researchers.<\/p><\/p>\n\n\n\n
AMD EPYC Server Processor Bug Fixes<\/strong><\/h2>\n\n\n\n
Recently AMD also patched medium and high severity security flaws affecting the company’s 1st\/2nd\/3rd Gen AMD EPYC server processors that could lead to arbitrary code execution, bypassing SPI ROM protections, loss of integrity, denial of service, information disclosure, and more.<\/p><\/p>\n\n\n\n
“During security reviews in collaboration with Google, Microsoft, and Oracle, potential vulnerabilities in the AMD Platform Security Processor (PSP), AMD System Management Unit (SMU), AMD Secure Encrypted Virtualization (SEV) and other platform components were discovered and have been mitigated in AMD EPYC AGESA PI packages,” AMD said.<\/p><\/p>\n\n\n\n
<\/figure><\/div>\n\n\n\n
The company also addressed an improper access control vulnerability (CVE-2021-26334) found by Michal Poslu\u0161n\u00fd from ESET Research in the AMDPowerProfiler.sys driver of the AMD \u03bcProf tool. AMD \u03bcProf is a performance analysis utility that can be used to inspect Windows, Linux, and FreeBSD applications.<\/p><\/p>\n\n\n\n
Successful exploitation of this flaw would allow attackers without enough privileges to gain access to kernel model-specific registers, which leads to privilege escalation and ring-0 code execution that gives the attacker full control over the vulnerable system <\/p><\/p>\n\n\n\n
When are Windows 11 Performance issues Addressed?<\/strong><\/h2>\n\n\n\n
At the start of October, right after Windows 11 started rolling out, AMD has also alerted significant performance hits on Windows 11 compatible AMD processors, which included the latest Ryzen CPUs when utilizing some of the Applications.<\/p><\/p>\n\n\n\n
One of the compatibility issues led to increased measured and functional L3 cache latency which had a direct impact on the access time to the memory subsystem for some apps.<\/p><\/p>\n\n\n\n
While for some of the affected apps the expected performance impact was between 3 to 5%, for eSports games AMD said that customers could see a performance decrease of 10-15% on Windows 11. The AMD CPU issues were addressed two weeks later with the optional KB5006746 cumulative update preview for Windows 11 released on October 21.<\/p><\/p>\n\n\n\n
“Addresses an L3 caching issue that might affect performance in some applications on devices that have AMD Ryzen processors after upgrading to Windows 11 (original release),” Microsoft explained in the release notes.<\/p><\/p>\n","protected":false},"excerpt":{"rendered":"
AMD has resolved a long list of security vulnerabilities found in its graphics driver for Windows 10 devices, permitting threat actors to run arbitrary code and raise the privileges on vulnerable systems. The probable impact and the bugs\u2019 severity vary, with AMD tagging more than a dozen flaws as high severity. \u201cIn a extensive research […]<\/p>\n","protected":false},"author":2,"featured_media":3705,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[6],"tags":[],"yoast_head":"\n
AMD fixes Multiple Windows 10 Graphic Driver Security Flaws - Xiarch Solutions Private Limited<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"AMD fixes Multiple Windows 10 Graphic Driver Security Flaws - Xiarch Solutions Private Limited\" \/>\n<meta property=\"og:description\" content=\"AMD has resolved a long list of security vulnerabilities found in its graphics driver for Windows 10 devices, permitting threat actors to run arbitrary code and raise the privileges on vulnerable systems. The probable impact and the bugs\u2019 severity vary, with AMD tagging more than a dozen flaws as high severity. \u201cIn a extensive research […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/\" \/>\n<meta property=\"og:site_name\" content=\"Xiarch Solutions Private Limited\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/xiarch\/\" \/>\n<meta property=\"article:published_time\" content=\"2021-11-12T13:18:22+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-11-12T13:18:24+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/11\/AMD-fixes-Multiple-Windows-10-Graphic-Driver-Security-Flaws-featured-image.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t<meta property=\"og:image:height\" content=\"525\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Xiarch Security\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@xiarch\" \/>\n<meta name=\"twitter:site\" content=\"@xiarch\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Xiarch Security\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/\"},\"author\":{\"name\":\"Xiarch Security\",\"@id\":\"https:\/\/xiarch.com\/blog\/#\/schema\/person\/655d814a04eacce56942270cfdc5c59c\"},\"headline\":\"AMD fixes Multiple Windows 10 Graphic Driver Security Flaws\",\"datePublished\":\"2021-11-12T13:18:22+00:00\",\"dateModified\":\"2021-11-12T13:18:24+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/\"},\"wordCount\":506,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/xiarch.com\/blog\/#organization\"},\"articleSection\":[\"Vulnerabilities\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/\",\"url\":\"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/\",\"name\":\"AMD fixes Multiple Windows 10 Graphic Driver Security Flaws - Xiarch Solutions Private Limited\",\"isPartOf\":{\"@id\":\"https:\/\/xiarch.com\/blog\/#website\"},\"datePublished\":\"2021-11-12T13:18:22+00:00\",\"dateModified\":\"2021-11-12T13:18:24+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/xiarch.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"AMD fixes Multiple Windows 10 Graphic Driver Security Flaws\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/xiarch.com\/blog\/#website\",\"url\":\"https:\/\/xiarch.com\/blog\/\",\"name\":\"Xiarch Solutions Private Limited\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/xiarch.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/xiarch.com\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/xiarch.com\/blog\/#organization\",\"name\":\"Xiarch\",\"url\":\"https:\/\/xiarch.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/xiarch.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/06\/xi-logo-002.png\",\"contentUrl\":\"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/06\/xi-logo-002.png\",\"width\":300,\"height\":300,\"caption\":\"Xiarch\"},\"image\":{\"@id\":\"https:\/\/xiarch.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/xiarch\/\",\"https:\/\/twitter.com\/xiarch\",\"https:\/\/www.linkedin.com\/company\/xiarch\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/xiarch.com\/blog\/#\/schema\/person\/655d814a04eacce56942270cfdc5c59c\",\"name\":\"Xiarch Security\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/xiarch.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d33699ed91b76568586dc1ae278ea568?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d33699ed91b76568586dc1ae278ea568?s=96&d=mm&r=g\",\"caption\":\"Xiarch Security\"},\"sameAs\":[\"https:\/\/xiarch.com\/blog\/\"],\"url\":\"https:\/\/xiarch.com\/blog\/author\/vector\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"AMD fixes Multiple Windows 10 Graphic Driver Security Flaws - Xiarch Solutions Private Limited","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/","og_locale":"en_US","og_type":"article","og_title":"AMD fixes Multiple Windows 10 Graphic Driver Security Flaws - Xiarch Solutions Private Limited","og_description":"AMD has resolved a long list of security vulnerabilities found in its graphics driver for Windows 10 devices, permitting threat actors to run arbitrary code and raise the privileges on vulnerable systems. The probable impact and the bugs\u2019 severity vary, with AMD tagging more than a dozen flaws as high severity. \u201cIn a extensive research […]","og_url":"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/","og_site_name":"Xiarch Solutions Private Limited","article_publisher":"https:\/\/www.facebook.com\/xiarch\/","article_published_time":"2021-11-12T13:18:22+00:00","article_modified_time":"2021-11-12T13:18:24+00:00","og_image":[{"width":1000,"height":525,"url":"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/11\/AMD-fixes-Multiple-Windows-10-Graphic-Driver-Security-Flaws-featured-image.jpg","type":"image\/jpeg"}],"author":"Xiarch Security","twitter_card":"summary_large_image","twitter_creator":"@xiarch","twitter_site":"@xiarch","twitter_misc":{"Written by":"Xiarch Security","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/#article","isPartOf":{"@id":"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/"},"author":{"name":"Xiarch Security","@id":"https:\/\/xiarch.com\/blog\/#\/schema\/person\/655d814a04eacce56942270cfdc5c59c"},"headline":"AMD fixes Multiple Windows 10 Graphic Driver Security Flaws","datePublished":"2021-11-12T13:18:22+00:00","dateModified":"2021-11-12T13:18:24+00:00","mainEntityOfPage":{"@id":"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/"},"wordCount":506,"commentCount":0,"publisher":{"@id":"https:\/\/xiarch.com\/blog\/#organization"},"articleSection":["Vulnerabilities"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/","url":"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/","name":"AMD fixes Multiple Windows 10 Graphic Driver Security Flaws - Xiarch Solutions Private Limited","isPartOf":{"@id":"https:\/\/xiarch.com\/blog\/#website"},"datePublished":"2021-11-12T13:18:22+00:00","dateModified":"2021-11-12T13:18:24+00:00","breadcrumb":{"@id":"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/xiarch.com\/blog\/amd-fixes-multiple-windows-10-graphic-driver-security-flaws\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/xiarch.com\/blog\/"},{"@type":"ListItem","position":2,"name":"AMD fixes Multiple Windows 10 Graphic Driver Security Flaws"}]},{"@type":"WebSite","@id":"https:\/\/xiarch.com\/blog\/#website","url":"https:\/\/xiarch.com\/blog\/","name":"Xiarch Solutions Private Limited","description":"","publisher":{"@id":"https:\/\/xiarch.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/xiarch.com\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/xiarch.com\/blog\/#organization","name":"Xiarch","url":"https:\/\/xiarch.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/xiarch.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/06\/xi-logo-002.png","contentUrl":"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/06\/xi-logo-002.png","width":300,"height":300,"caption":"Xiarch"},"image":{"@id":"https:\/\/xiarch.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/xiarch\/","https:\/\/twitter.com\/xiarch","https:\/\/www.linkedin.com\/company\/xiarch"]},{"@type":"Person","@id":"https:\/\/xiarch.com\/blog\/#\/schema\/person\/655d814a04eacce56942270cfdc5c59c","name":"Xiarch Security","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/xiarch.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/d33699ed91b76568586dc1ae278ea568?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d33699ed91b76568586dc1ae278ea568?s=96&d=mm&r=g","caption":"Xiarch Security"},"sameAs":["https:\/\/xiarch.com\/blog\/"],"url":"https:\/\/xiarch.com\/blog\/author\/vector\/"}]}},"_links":{"self":[{"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/posts\/3703"}],"collection":[{"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/comments?post=3703"}],"version-history":[{"count":1,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/posts\/3703\/revisions"}],"predecessor-version":[{"id":3707,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/posts\/3703\/revisions\/3707"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/media\/3705"}],"wp:attachment":[{"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/media?parent=3703"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/categories?post=3703"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/tags?post=3703"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
![\"AMD-fixes-Multiple-Windows-10-Graphic-Driver-Security-Flaws-image1\"](\"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/11\/AMD-fixes-Multiple-Windows-10-Graphic-Driver-Security-Flaws-image1.jpg\")
<\/figure><\/div>\n\n\n\n