As AMD has no intentions to release a patch for the Ryzen 3000 series and bellow, what users can do to protect themselves?

I can assume few things:

  1. Do not run any untrusted software and closed source software in general.

  2. Do not run untrusted OSes and distros. Also disable ability to boot from external devices.

  3. Sandboxing (e.g. flatpaks) won’t give you any protection, as it does not protect against kernel exploits.

  4. VMs can give defense if you need to run untrusted apps. Probably it is good to run networking apps in a VM also.

What else? What about web browsers? What you are going to do with affected devices if you have them?

  • cron
    link
    fedilink
    English
    arrow-up
    6
    ·
    3 months ago

    Maybe someone will prove me wrong, but I think there is still not enough public information about the vulnerability and the possible mitigations to answer your questions thoroughly.