Zenbleed (CVE-2023-20593)
Let’s explore the “most exciting“ CPU vulnerability affecting Zen2 CPUs from AMD.
Watch part 1 about fuzzing:
buy my font (advertisement):
This video is sponsored by Google:
Original Zenbleed Writeup:
Grab the code:
cvtsi2ss:
AMD Security Bulletin:
RIDL Video:
Tavis Ormandy:
Chapters:
00:00 - Intro
02:27 - Patterns
03:56 - The C Exploit Code
05:20 - Assembly Generation with Compiler Preprocessor
07:40 - What are XMM and YMM Registers?
11:56 - Zenbleed: Trigger Merge Optimization
14:28 - Register File & Register Allocation Table
16:39 - Register Renaming
17:55 - Speculative Execution
18:55 - vzeroupper and SSE & AVX History
21:22 - Zenbleed Explanation
23:55 - How to fix Zenbleed?
=[ ❤️ Support ]=
→ per Video:
→ per Month:
2nd Channel:
=[ 🐕 Social ]=
→ Twitter:
→ Streaming:
→ TikTok: @liveoverflow_
→ Instagram:
→ Blog:
→ Subreddit:
→ Facebook:
1 year ago 00:26:46 1
