Complete Control Over CPUs via NVIDIA GPUs? The New Threat of "GDDRHammer"

#NVIDIA #Security #GPU #Vulnerability

※この記事はアフィリエイト広告を含みます

Complete Control Over NVIDIA GPUs? The New Threat of “GDDRHammer”

📰 News Overview

A new Rowhammer attack named “GDDRHammer” and “GeForge,” targeting NVIDIA’s Ampere generation GPUs, has been independently proven by two research teams.
By performing “memory massage” on the GPU memory (GDDR) to induce bit flips, attackers can breach GPU page table isolation, enabling arbitrary read and write access to the CPU memory.
If the attack is successful, the attacker gains full root access to the host machine, allowing complete control of the system.

💡 Key Points

Bypassing CPU Protections: It’s been demonstrated that traditional Rowhammer mitigations for CPUs can be completely circumvented through the use of GPUs.
Risks in Shared Environments: In cloud environments where GPUs are shared among multiple users, malicious actors can attack other users or administrative systems.
Defaults Exposed: If the BIOS IOMMU settings are left at default (disabled), the attack is more likely to succeed.

🦈 Shark’s Eye (Curator’s Perspective)

This is a sophisticated attack that strikes the GPU hard, knocking out the CPU—it’s like giving a blow to the side of the head and shaking the brain! It’s astonishing that the efficiency of bit flipping has improved by 64 times compared to the previously announced “GPUHammer.” The implementation that deliberately manipulates the page table using memory massage techniques cleverly exploits the physical properties of the hardware. No matter how fortified the CPU security is, if there’s an “open backdoor” through the GPU, the system can’t be secured. This research has significant implications!

🚀 What’s Next?

GPU manufacturers and cloud providers will be pressured to implement new protective measures for GDDR memory and enforce IOMMU activation through BIOS updates.

💬 One Shark’s Comment

Shark teeth are sharp, but this memory-hammering “attack” is quite brutal too! For everyone using shared GPUs, stay alert to your surroundings! 🦈💥

📚 Terminology Explained

Rowhammer: An attack technique that repeatedly accesses specific rows in memory at high speed, causing adjacent row data (bits) to flip due to electrical interference.
GDDR: A high-speed DRAM standard specialized for graphics processing, referring to the video memory equipped in GPUs.
IOMMU: A hardware feature that manages and restricts access of peripheral devices (like GPUs) to the main memory. When disabled, devices can more freely manipulate memory.
Source: New Rowhammer attacks give complete control of machines running Nvidia GPUs