AMD has announced that it will not release patches for several older chip models affected by the recently discovered “Sinkclose” security vulnerability, leaving these processors potentially exposed to cyber threats. The flaw, identified by researchers at IOActive, affects many AMD processors produced since 2006. It allows attackers to execute malicious code within the System Management Mode (SMM) of the chips, a usually secure environment, posing a particular risk to governments and large organizations rather than individual users.
Despite the seriousness of this vulnerability, AMD will not provide updates for specific older processors. These include the Ryzen 1000, 2000, and 3000 series, as well as the Threadripper 1000 and 2000 series. The company cited these chips as being “older products outside our software support window,” meaning they no longer receive regular software updates or security patches.
Users of these legacy systems, therefore, remain vulnerable to the Sinkclose flaw unless they opt to upgrade to newer hardware. This decision by AMD could pose significant security risks, particularly in environments where upgrading hardware is challenging or not immediately feasible.
While AMD has committed to patching newer models and all embedded processors, those still relying on the unsupported chips may need to evaluate their security options carefully. The industry practice of phasing out support for older hardware, though standard, may leave certain users in a precarious position concerning security vulnerabilities like Sinkclose.
For those operating affected AMD processors, assessing the security implications for their systems is crucial. The risk may be low for individual users, but businesses and organizations, especially those handling sensitive data, might need to consider upgrading to newer hardware to ensure full protection.
The discovery of the Sinkclose vulnerability serves as a reminder of the critical importance of keeping both hardware and software up to date to mitigate emerging security risks.
