RowHammer

Vulnerability updated 5 days ago (2024-10-23T04:00:58.358Z)

Download STIX

Preview STIX

Rowhammer is a vulnerability that affects the design and implementation of software, particularly evident in DRAM memory structures. This flaw allows attackers to manipulate system memory by repeatedly accessing specific areas of RAM, causing read disturbance in neighboring cells where important operating system data might be stored. The vulnerability was first exposed in 2015 by Google researchers who demonstrated how RowHammer could be used to gain unlimited access to a computer's RAM. Subsequent studies have explored the structure and characteristics of DRAM to improve processing, enhance reliability, and mitigate the RowHammer vulnerability. More recently, these studies have shown that attackers can exploit system-level techniques using the RowHammer vulnerability to precisely flip bits in Deep Neural Networks (DNN) model weights, affecting inference accuracy. In 2021, researchers introduced the BlackSmith attack, demonstrating that under certain conditions, failures could occur even with RowHammer protections in place. Comparatively, a newer variant known as RowPress has been identified as more potent than RowHammer, requiring fewer "hammerings" to achieve its goal. This variant slightly modifies the memory access method, allowing attackers to bypass protections implemented by module manufacturers without needing to heat or "cheat". Despite the increased potency of RowPress, the likelihood of a home user experiencing a RowHammer, Blacksmith, or RowPress attack remains miniscule. The seriousness of the RowHammer vulnerability led to the issuance of CVE-2023-42465, an initiative to make sudo less vulnerable to RowHammer attacks. Austria-based security researchers Andreas Kogler and Jonas Juffinger have been guiding attendees through a decade of RowHammer attacks, educating on this notorious exploit hackers use to manipulate memory. Despite the ongoing research and mitigation efforts, RowHammer continues to pose a significant threat to computer systems, underscoring the need for continued vigilance and protective measures against such attacks.

Description last updated: 2024-10-23T03:02:00.126Z

What's your take? (Question 1 of 0)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Exploit

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Source Document References

Information about the RowHammer Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
BankInfoSecurity	5 days ago	Exploring the Latest Security Innovations at Hardwear.io
CERT-EU	8 months ago	SUSE: 2024:0834-1 important: sudo \| LinuxSecurity.com
CERT-EU	8 months ago	SUSE: 2024:0794-2 important: sudo \| LinuxSecurity.com
CERT-EU	a year ago	Search \| arXiv e-print repository
CERT-EU	a year ago	Search \| arXiv e-print repository
CERT-EU	a year ago	RowPress RAM attack
Naked Security	a year ago	S3 Ep143: Supercookie surveillance shenanigans
Naked Security	a year ago	Serious Security: Rowhammer returns to gaslight your computer
CERT-EU	a year ago	This Week In Security:Camaro Dragon, RowPress, And RepoJacking