oss-sec mailing list archives

Re: AMD Microcode Signature Verification Vulnerability

From: trinity pointard <trinity.pointard () gmail com>
Date: Fri, 7 Feb 2025 00:04:00 +0100

If an attacker is able to control the hypervisor (necessary to load
rogue microcode) and the processor microcode, how can the VM trust that
it is actually verifying that attestation and not being sent down a "oh
yes it is exactly what you want it to be" garden path?


Attestations are cryptographically signed by the cpu, and meant to be sent
elsewhere and verified remotely. The key used to sign (VCEK) are dependent on
the microcode version, so it shouldn't be possible to forge new-looking
signature with old microcodes (i would hope this hold would someone be able to
decrypt a microcode, though i couldn't find information on that subject).

Current thread:

AMD Microcode Signature Verification Vulnerability Tavis Ormandy (Jan 21)
- Re: AMD Microcode Signature Verification Vulnerability Demi Marie Obenour (Jan 22)
  - Re: AMD Microcode Signature Verification Vulnerability Tavis Ormandy (Jan 22)
    - Re: AMD Microcode Signature Verification Vulnerability Solar Designer (Feb 04)
    - Re: AMD Microcode Signature Verification Vulnerability Jacob Bachmeyer (Feb 05)
    - Re: AMD Microcode Signature Verification Vulnerability trinity pointard (Feb 06)
    - Re: AMD Microcode Signature Verification Vulnerability Jacob Bachmeyer (Feb 06)
    - Re: AMD Microcode Signature Verification Vulnerability Solar Designer (Mar 05)
    - Re: AMD Microcode Signature Verification Vulnerability Jacob Bachmeyer (Mar 05)
    - Re: AMD Microcode Signature Verification Vulnerability Solar Designer (Mar 05)
    - Re: AMD Microcode Signature Verification Vulnerability Jacob Bachmeyer (Mar 05)
    - Re: AMD Microcode Signature Verification Vulnerability Solar Designer (Mar 05)
    - Re: AMD Microcode Signature Verification Vulnerability Taylor R Campbell (Mar 06)