AMD Security Bulletin AMD-SB-3007, February 2024
Supermicro is aware of the SEV-SNP Firmware Vulnerabilities. This issue affects AMD EPYC™ 3rd Gen and 4th Gen Processors.
|Failure to initialize memory in SEV firmware may allow a privileged attacker to access stale data from other guests.
|Due to a code bug in Secure_TSC, SEV firmware may allow an attacker with high privileges to cause a guest to observe an incorrect TSC when Secure TSC is enabled potentially resulting in a loss of guest integrity.
Supermicro BIOS in the H12 and select H13 motherboards.
|AMD Motherboard Generation
|BIOS Version with the fix
|H12 – Milan
- All affected Supermicro motherboard SKUs will require a BIOS update to mitigate this potential vulnerability.
- An updated BIOS firmware had been created to mitigate this potential vulnerability. Supermicro is currently testing and validating affected products. Please check Release Notes for the resolution.