Defeat the current rowhammer security
Rowhammer is a method of deliberately packed in modern draam chips, intentional disturbances inside the memory cells, or a method of producing bit flip. Since 2014, researchers have noticed that rapid and frequent reading on the same physical line of memory cells can leaked electric charges in adjacent rows, which change the values stored in cells 0 to 1 or another manner. In 2015, GOOGLE researchers showed that if performed in a controlled manner, its safety may be implicit, such as a privilege increase in the operating system between users and kernels, or the bypass of the process sandbox.
Rowhammer and its various variations have been discovered, so the DDR5 and DDR4 memory modules have affected, DDR5, with a new technique, has used more sophisticated mechanisms to detect and correct disturbances. These mitigation mechanisms are known as the target row refresh (TRR) and include detecting the so -called aggressive rows that are hammering and then refreshing adjacent afflicted rows to correct any bit flip. TRRs are also present in DDR4, but less sophisticated and easy to defeat the implementation.
TRRs are owned and not publicly documented, which is why Rowhammer attacks were first attempted against DDR5. But a Rohemmer attack by Zenhamemer revealed in 2024 managed to trigger bit flip in one of the 10 -tested DDR5 DIMMs. Comparatively, the new Phoenix attack managed to trigger bit flip in all tested DIMMs.
