NVIDIA's gaming GPUs have been hit by the 'Rowhammer' vulnerability, a security flaw that has existed for more than a decade and is troublesome for the average consumer.
New Research Indicates that Rowhammer Attacks Can Now Target GDDR Memory, Which Is in All Gaming GPUs
Vulnerabilities in hardware components aren't uncommon, and intruders have long meddled with your CPUs to compromise systems. However, in the case of GPUs, the vulnerabilities haven't been as common; according to a report by Ars Technica, there appears to be a flaw that directly targets GDDR memory. The attacks are labeled 'Rowhammer,' and the latest report suggests they have now been extended to NVIDIA's Ampere GPUs, such as the RTX 3060 and RTX A6000. Potential attackers could get access to your systems in a pretty interesting way, which we'll discuss ahead.
Rowhammer attacks have previously been limited to system memory, such as DDR modules, but the latest research indicates they have been extended to GPU memory as well, which is why they affect the broader gaming community. Now, gaining system-level access via simple DDR modules might seem odd at first, but as Rowhammer demonstrates, it can manipulate individual memory chips within the GPU through electrical interference. The GPU memory is tricked into believing that 'sensitive' data is in a secure location, but in reality, it has already been exposed.
By corrupting GPU page tables, an unprivileged CUDA kernel can gain arbitrary GPU memory read/write, and then chain that capability into CPU-side escalation by exploiting newly discovered memory-safety bugs in the NVIDIA driver.
The result is system-wide compromise up to a root shell, without disabling IOMMU, unlike contemporary works, making GPUBreach a more potent threat.
- via Ars Technica
Early research has suggested that for gamers, the RTX 3060 GPU is susceptible to Rowhammer attacks, and on the workstation level, the RTX A6000 is compromised. However, the important point to note is that there haven't been any attempts to use Rowhammer attacks on GPUs to gain access to system information, likely due to the highly complex nature of the attacks. For consumers, the threat from Rowhammer isn't large. However, in enterprises where cloud systems have been widely deployed to power AI workloads, Rowhammer could potentially target multiple users simultaneously, depending on whether the attack succeeds.
If we go by the thesis that Rowhammer can now target GDDR memory, then it's likely that almost all gaming GPUs are affected by this security flaw. Yet at the same time, given that Rowhammer hasn't been discussed extensively for consumer GPUs before, there hasn't been an incident in which newer GPU lineups have been targeted; hence, we cannot say for sure how many gamers are affected by it.
About the author: Muhammad Zuhair is a hardware and technology reporter for Wccftech, specializing in the semiconductor industry and the complex interplay between technology, manufacturing, and geopolitics. His coverage focuses on the corporate strategies and technological roadmaps of industry giants like TSMC, NVIDIA, Samsung, and Intel. Zuhair's expertise lies in deconstructing complex topics such as fabrication nodes (e.g., 2nm process), the economic impact of policies like the CHIPS Act, and the strategic development of AI infrastructure from NVIDIA, AMD and Intel.
Follow Wccftech on Google to get more of our news coverage in your feeds.
