heise PlusAbo
Anzeige

AMD fTPM bug: Some motherboard manufacturers do not distribute the fix

AMD explains that a correction for an fTPM error has been available for years. Manufacturers just don't deliver it.

listen Print view
Ryzen 9 9950X3D in a motherboard with blue and red light

(Image: c't)

3 min. read
Security
By

AMD has been providing corrected firmware updates for a bug in the AMD Secure Processor (ASP) Firmware Trusted Platform Module (fTPM) of various AMD Ryzen processors since 2022. However, users are still affected because motherboard manufacturers are not incorporating and distributing the fix in their BIOS versions.

AMD complains about this in a support article published on Monday of this week. The error in the fTPM causes checks with the TPM under Windows to return the error code 0x80070490 instead of positively acknowledging such checks. This has practical consequences for those impacted.

No participation in online tournaments

AMD explains that some apps disable functions if the TPM check fails. As an example, the manufacturer states that gamers cannot participate in online tournaments with prize money. A fix has been available since 2022 for affected processors in the Ryzen 1000 to 5000 series for both desktops and notebooks.

Videos by heise

The processor manufacturer writes that some motherboard manufacturers are deciding not to distribute this TPM firmware update. This is immediately followed by a possible reason: anyone who uses Bitlocker should suspend Bitlocker usage during such a TPM update. The update process can delete the TPM outside the Windows APIs. If Bitlocker is activated, the computer could then go into recovery mode on restart and request the Bitlocker recovery key or a password for computer access. Anyone who does not have a backup of the Bitlocker recovery key at this point, for example on paper, in a file on a USB stick, or in a Microsoft account, could lose all data on the computer.

Versions 3.*.0.* of AMD fTPM are impacted; fTPM versions 3.*.2.* and 6.*.*.* (where * is an arbitrary number) do not have this error. The fTPM version is displayed by the command “Powershell.exe -Command Get-TPM” at the command prompt. AMD does not provide any temporary workarounds to mitigate the effects of the error. Those affected should contact the manufacturer of their motherboard to obtain a firmware update if one is available.

It is currently unclear why AMD is not commenting on this older error this week.

On Wednesday, new security vulnerabilities in various modern Ryzen and Epyc processors from AMD became known. Microsoft discovered the vulnerabilities, which are classified as medium-risk and have not yet been attacked.

(dmk)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten