[Users] rowhammer exploit
Solar Designer
solar at openwall.com
Tue Mar 10 13:32:33 PDT 2015
On Tue, Mar 10, 2015 at 02:35:41PM +0100, lst_hoe02 at kwsoft.de wrote:
> Zitat von Benjamin Henrion <zoobab at gmail.com>:
> >Could this be used to gain HN root access from a container:
> >
> >http://googleprojectzero.blogspot.be/2015/03/exploiting-dram-rowhammer-bug-to-gain.html?m=1
> >
> >best,
>
> As i understand this is a hardware defect, so yes it would be
> exploitable within any OS which does not explicit prevent the usage
> pattern of RAM.
Yes, but patching the Linux kernel to restrict access to
/proc/self/pagemap may mitigate the currently described attack. This is
something the OpenVZ project may do.
Alexander
More information about the Users
mailing list