AMD confirms security vulnerability on Zen 5-based CPUs that generates potentially predictable keys — RDSEED fix coming through an AGESA firmware update for desktop chips

AMD has acknowledged a security flaw on Zen 5-based CPUs related to the RDSEED instruction, which can lead to predictable keys being generated. The vulnerability affects the random number generator, potentially compromising cryptography applications. Mitigations are being rolled out, with EPYC 9005 CPUs already addressed and fixes for consumer-based Zen 5 chips expected on November 25th. An AGESA firmware update will address the issue, and AMD advises users to switch to the unaffected 64-bit RDSEED or use a software fallback until the update is available.