As AMD has no intentions to release a patch for the Ryzen 3000 series and bellow, what users can do to protect themselves?

I can assume few things:

  1. Do not run any untrusted software and closed source software in general.

  2. Do not run untrusted OSes and distros. Also disable ability to boot from external devices.

  3. Sandboxing (e.g. flatpaks) won’t give you any protection, as it does not protect against kernel exploits.

  4. VMs can give defense if you need to run untrusted apps. Probably it is good to run networking apps in a VM also.

What else? What about web browsers? What you are going to do with affected devices if you have them?

  • BrikoX
    link
    fedilink
    English
    arrow-up
    12
    ·
    4 months ago

    It requires kernel level access to abuse, so it will probably be mostly used in targeted attacks. General good technical hygiene should be good enough to prevent becoming a random victim.