rowpress

RowPress is a novel vulnerability in the design and implementation of software that amplifies read disturbance in modern DRAM chips. The RowPress attack, much like its predecessor, the RowHammer attack, leverages a flaw in DRAM memory cells to induce errors and gain unauthorized access to data. However, RowPress presents a more potent threat as it modifies the memory access method, keeping the activation line open for longer than normal, thereby bypassing protections implemented by module manufacturers. This makes RowPress tens or even hundreds of times more effective than RowHammer. The susceptibility to a RowPress attack increases significantly when the RAM temperature exceeds 80 degrees Celsius, making most tested RAMs more vulnerable to memory corruption. Despite this increased vulnerability, the likelihood of a RowHammer, Blacksmith, or RowPress attack on home users remains minuscule. The RowPress attack employs the same basic principle as the earlier attacks but with one crucial change: the attacker attempts to keep one row of cells open for reading as long as possible, leading to an increase in attack effectiveness. In response to the RowPress vulnerability, software updates have been released to mitigate the risk. Dell has issued a BIOS security update to address an out-of-bounds write vulnerability, and Google has also rolled out an update for Chrome. It is crucial for users to apply these updates promptly to protect their systems from potential exploitation. The RowPress attack emphasizes the importance of malware triage in identifying and mitigating threats to ensure the safety and integrity of computer systems.