Summary
Rowhammer attacks, first disclosed in 2014, have been repurposed for modern GPUs. The new GDDRHammer and GeForge attacks use GPU memory bit flips to break isolation and reach host CPU memory, allowing for full machine compromise. The [[nvidia|NVIDIA]] GeForce RTX 3060 and RTX A6000 have been confirmed vulnerable, with the RTX A6000 being particularly susceptible. The attacks work by repeatedly hitting the same GDDR6 memory rows until nearby bits flip, corrupting GPU page tables and allowing the GPU to access CPU memory. Researchers have demonstrated the attacks on the RTX 3060 and an Ampere workstation GPU, with nearly all tested RTX A6000 cards remaining vulnerable under realistic settings. For more information on [[gpu|GPU]] security, visit our [[gpu-security|GPU Security]] page. The [[rowhammer|Rowhammer]] attack is a type of [[dram|DRAM]] issue that can be used to compromise the security of a system.
Key Takeaways
- The new Rowhammer attacks, GDDRHammer and GeForge, use GPU memory bit flips to break isolation and reach host CPU memory
- The NVIDIA GeForce RTX 3060 and RTX A6000 have been confirmed vulnerable to the attacks
- The attacks work by repeatedly hitting the same GDDR6 memory rows until nearby bits flip, corrupting GPU page tables
- ECC can be enabled from the command line as a mitigation, but may come with a performance cost
- The attacks highlight the importance of ongoing research into [[gpu-security|GPU security]]
Balanced Perspective
The new Rowhammer attacks are a reminder that [[gpu-security|GPU security]] is an ongoing concern. While the attacks are significant, they are not unprecedented, and researchers have been working to identify and mitigate vulnerabilities for years. The fact that some GPUs, such as the RTX 3080 and RTX 4060, did not exhibit bit flips suggests that there may be variations in vulnerability between different models. For more information on [[gpu|GPU]] security and the latest research, visit our [[gpu-security|GPU Security]] page.
Optimistic View
The discovery of these new Rowhammer attacks highlights the importance of ongoing research into [[gpu-security|GPU security]]. While the attacks are concerning, they also demonstrate the ability of researchers to identify and mitigate vulnerabilities, ultimately leading to more secure systems. The fact that NVIDIA's GDDR7 devices implement on-die ECC is a positive step towards protecting against these types of attacks. For more information on [[nvidia|NVIDIA]]'s security efforts, visit our [[nvidia|NVIDIA]] page.
Critical View
The discovery of these new Rowhammer attacks is a concerning development, as it highlights the potential for [[gpu-security|GPU security]] vulnerabilities to be exploited. The fact that the RTX 3060 and RTX A6000 are vulnerable, and that the attacks can compromise host CPU memory, is particularly worrying. The performance cost of enabling ECC as a mitigation may also be a concern for users who rely on their GPUs for demanding applications. For more information on the potential risks and consequences of [[rowhammer|Rowhammer]] attacks, visit our [[rowhammer|Rowhammer]] page.
Source
Originally reported by VideoCardz.com