DRAM Rowhammer exploits

2015-03-09 Thread Dmitry Morozovsky
Dear colleagues, any thoughts we're vulnerable to this? http://googleprojectzero.blogspot.ch/2015/03/exploiting-dram-rowhammer-bug-to-gain.html -- Sincerely, D.Marck [DM5020, MCK-RIPE, DM3-RIPN] [ FreeBSD committer: ma...@freeb

Re: DRAM Rowhammer exploits

2015-03-09 Thread Poul-Henning Kamp
In message , Dmitry Morozo vsky writes: >Dear colleagues, > >any thoughts we're vulnerable to this? It's a hardware problem, *everybody* are vulnerable. -- Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 p...@freebsd.org | TCP/IP since RFC 956 FreeBSD committer | BSD

Re: DRAM Rowhammer exploits

2015-03-09 Thread Dmitry Morozovsky
On Mon, 9 Mar 2015, Poul-Henning Kamp wrote: > >any thoughts we're vulnerable to this? > > It's a hardware problem, *everybody* are vulnerable. Well, it seems I used somewhat incorrect wordings. Any chance we could provide workaround like for Pentium f00f bug? Actually I doubt it as cache flus

Re: DRAM Rowhammer exploits

2015-03-09 Thread Karl Denninger
On 3/9/2015 14:52, Poul-Henning Kamp wrote: In message , Dmitry Morozo vsky writes: Dear colleagues, any thoughts we're vulnerable to this? It's a hardware problem, *everybody* are vulnerable. And this is why (among other reasons) you run ECC memory! Note that privilege escalat

Re: DRAM Rowhammer exploits

2015-03-09 Thread Bakul Shah
On Mon, 09 Mar 2015 19:52:04 - "Poul-Henning Kamp" wrote: > > In message , Dmitry Moro > zo > vsky writes: > >Dear colleagues, > > > >any thoughts we're vulnerable to this? > > It's a hardware problem, *everybody* are vulnerable. I guess manufacturer memory testing hasn't kept up t

Re: DRAM Rowhammer exploits

2015-03-09 Thread Poul-Henning Kamp
In message , Dmitry Morozo vsky writes: >On Mon, 9 Mar 2015, Poul-Henning Kamp wrote: > >> >any thoughts we're vulnerable to this? >> >> It's a hardware problem, *everybody* are vulnerable. > >Well, it seems I used somewhat incorrect wordings. > >Any chance we could provide workaround lik

Re: DRAM Rowhammer exploits

2015-03-09 Thread Poul-Henning Kamp
In message <20150309202308.64dfbb...@mail.bitblocks.com>, Bakul Shah writes: >On Mon, 09 Mar 2015 19:52:04 - "Poul-Henning Kamp" >wrote: >Hopefully ECC memory protects against such exploits (at least >makes them a lot less vulnerable). ECC only makes it harder, it doesn't make it i

Re: DRAM Rowhammer exploits

2015-03-09 Thread Bakul Shah
On Mon, 09 Mar 2015 20:46:19 - "Poul-Henning Kamp" wrote: > > In message <20150309202308.64dfbb...@mail.bitblocks.com>, Bakul Shah writes: > >On Mon, 09 Mar 2015 19:52:04 - "Poul-Henning Kamp" > wrote: > > >Hopefully ECC memory protects against such exploits (at least > >makes

Re: DRAM Rowhammer exploits

2015-03-09 Thread Willem Jan Withagen
On 09/03/2015 20:49, Dmitry Morozovsky wrote: > Dear colleagues, > > any thoughts we're vulnerable to this? > > http://googleprojectzero.blogspot.ch/2015/03/exploiting-dram-rowhammer-bug-to-gain.html > As pointed out is this a hardware originated problem, not really fixable by software. Only E

Re: DRAM Rowhammer exploits

2015-03-09 Thread Willem Jan Withagen
On 09/03/2015 22:37, Bakul Shah wrote: > On Mon, 09 Mar 2015 20:46:19 - "Poul-Henning Kamp" > wrote: >> >> In message <20150309202308.64dfbb...@mail.bitblocks.com>, Bakul Shah writes: >>> On Mon, 09 Mar 2015 19:52:04 - "Poul-Henning Kamp" >>> >> wrote: >> >>> Hopefully ECC mem