AMD has fixed one high-severity vulnerability affecting its client and embedded processors; fixes for the other two will come out later in June. An attacker with privileged access to certain AMD powered systems could exploit the flaws to execute arbitrary code or take control of the firmware. The flaws exist on AMD s Accelerated Processing Unit (APU) microprocessors, which are designed to act as both a CPU and GPU on a single die. The three flaws were reported by security researcher Danny Odler on April 2, who then went on to publish an analysis for the patched vulnerability.
Source: https://threatpost.com/amd-fixes-for-high-severity-smm-callout-flaws-upcoming/156787/