AMD confirms that some Zen 5 CPUs have a worrying safety flaw that might put customers in danger

• AMD Zen 5 chips have RDSEED flaw that places cryptographic key integrity in danger
• A defective RDSEED can return zeros, permitting attackers to reconstruct non-public keys and break encryption
• AMD recommends turning to 64-bit RDSEED or software program options

Some AMD processors, together with these constructed with the newest Zen 5 structure, have a vital vulnerability that impacts cryptographic operations and due to this fact severely places the integrity of protected information in danger.

In a safety bulletin, AMD detailed a flaw known as “AMD-SB-7055,” describing it as a vulnerability within the RDSEED hardware-based random quantity generator.

On affected chips, the 16-bit and 32-bit types of the RDSEED instruction can return “0” at a price that’s not utterly random whereas nonetheless labeling the method as profitable. In idea, if an organization runs a server that generates cryptographic keys to encrypt buyer information and the software program working on that server makes use of RDSEED directions to acquire random numbers instantly from the chip, the instruction might return solely zeros.

Patches and mitigations

While it is clearly not completely random, it will nonetheless be an indication that it was profitable, with out elevating any crimson flags.

As a end result, attackers who acquire one of many public keys can mathematically reconstruct or guess the non-public key, breaking the encryption or impersonating the corporate, that means that encrypted buyer information, API tokens, and even software program replace signatures could possibly be solid or decrypted.

Mitigations and patches are already being labored on. By January 2026, relying on the CPU, most ought to have been mitigated.

Fixes for AMD’s client Zen 5 chips, together with the Ryzen 9000, AI Max 300, Threadripper 9000, and Ryzen Z2 sequence, can be launched on November 25.

AMD added that it ought to have the required AGESA microcode updates “soon” to rectify this situation on all Zen 5 CPUs.

If you might be working chips that don’t but have a useful mitigation, AMD recommends reverting to its unaffected 64-bit RDSEED type or transferring to restoration software program till it’s launched.

Through Tom Hardware