Researchers warn that a bug in AMD’s chips would allow attackers to root into some of the most privileged portions of a computer—and that it has persisted in the company’s processors for decades.
Agreed. Im hoping to see more RISC-V processors make it to commercial hardware. We are starting to see it with some experimental single board computers and laptops, but they are still much too slow. But its getting there!
I also want to see RV develop to a point where it can compete with incumbents but sinkclose isn’t a hardware vulnerability. The issue here lies with AGESA, AMD will be moving to OpenSIL hopefully around 2026.
Furthermore, RISC-V is an Open ISA but that doesn’t necessarily mean products based on this remain open.
"GhostWrite is the result of an architectural flaw, a hardware bug in the XuanTie C910 and C920 CPU. These are only two of many RISC-V CPUs, but they are widely used for a variety of applications. According to the research team, vulnerable devices include:
Scaleway Elastic Metal RV1, bare-metal C910 cloud instances
Agreed. Im hoping to see more RISC-V processors make it to commercial hardware. We are starting to see it with some experimental single board computers and laptops, but they are still much too slow. But its getting there!
https://milkv.io/mars#buy might be a good place to start, although im looking for the spec sheet…
Ive been on the lookout for a “good enough” server with RISC-V. Would love to play around with it.
RISC-V ISA isn’t magically exempt from vulnerabilities. You can still be hit at a microcode level.
https://www.phoronix.com/news/GhostWrite-Vulnerability-RISC-V
For AMD, I’m wondering if OpenSIL can help prevent similar, deep system firmware vulnerabilities from lingering cross numerous product generations.
It would improve the number of eyes if you had full specs. You can arguably identify exploits and bugs much faster.
I also just want RISC-V :)
I also want to see RV develop to a point where it can compete with incumbents but sinkclose isn’t a hardware vulnerability. The issue here lies with AGESA, AMD will be moving to OpenSIL hopefully around 2026.
Furthermore, RISC-V is an Open ISA but that doesn’t necessarily mean products based on this remain open.
"GhostWrite is the result of an architectural flaw, a hardware bug in the XuanTie C910 and C920 CPU. These are only two of many RISC-V CPUs, but they are widely used for a variety of applications. According to the research team, vulnerable devices include:
Scaleway Elastic Metal RV1, bare-metal C910 cloud instances
https://www.tomshardware.com/pc-components/cpus/ghostwrite-vulnerability-exploits-architectural-bug-in-risc-v-cpu-to-gain-root-access