[Info-vax] Throwhammer, remote Rowhammer via RDMA (was Re: CVE-2018-8897 Privilege Escalation due to widespread misunderstanding of x86-64 privileged instruction semantics)
Stephen Hoffman
seaohveh at hoffmanlabs.invalid
Thu May 10 15:50:27 EDT 2018
More security fun, a remote rowhammer via RDMA.
"Throwhammer: Rowhammer Attacks over the Network and Defenses"
https://arstechnica.com/information-technology/2018/05/attackers-trigger-rowhammer-bit-flips-by-sending-network-packets-over-a-lan/
Which means memory-level rowhammer detection, or faster or smarter
(TRR/pTRR) refresh support. ECC alone isn't quite enough.
DDR-related hardware updates for Itanium and Alpha systems are just not
going to happen.
--
Pure Personal Opinion | HoffmanLabs LLC
More information about the Info-vax
mailing list