While AMD introduced drivers for Adrenalin 20.1.1, it has never been said that it fixes these four serious issues, which is surprising since these types of actions are one of the best reasons for us to introduce a new type of drivers. It is due to Talos Intelligence that a diagnosis of these problems has been discovered (and reports you linked at the end of this article).
The risk is fixed
The four risks are fixed in the most recent type of AMD drivers:
- CVE-2019-5146: «AMD ATI Radeon ATIDXX64.DLL MAD Shader», for service denial.
- CVE-2019-5147: «AMD ATI Radeon ATIDXX64.DLL MOVC Shader», and related to service denial.
- CVE-2019-5124: «AMD ATI Radeon ATIDXX64.DLL shader function constant buffer», and service denial.
- CVE-2019-5183: «AMD ATI Radeon ATIDXX64.DLL shader VTABLE operation», which means malicious code execution.
The first third is, in essence, the difference of three. They are related to a bad shader code that causes the driver to hang up when virtual machines are running. The risk of storage is very high and may affect users "on foot", because it is permitted remote encoding by using vTable, which enables the attack on a malicious attacker over the driver code, it allows him to modify it.
Keep your AMD drivers updated
It is always good to have updated graphic card drivers, since manufacturers are constantly introducing improvements that ensure the best performance of their products in the latest released games. However, another important reason to keep drivers in a constant state of cases like this is of concern to us today, because they often solve less problems but also address the risks that may affect users in some cases.
Once you have Radeon Software installed, you can upgrade it directly from it due to its automatic update process, and if not, you can always log into the AMD download site to find the most updated driver and get it manually installed. In any case, we would always recommend that you keep your photographer in the latest version for the reasons described above.
