Astra Linux – Vulnerability in Firefox and Thunderbird

Due to incorrect JIT optimization, we misinterpreted data from the wrong type of object, resulting in the potential leakage of a single bit of memory. This vulnerability affects Firefox 91 and Thunderbird 91...

Remote Rowhammer Attack Using Adversarial Observations on Federated Learning Clients

Federated Learning FL has the potential for simultaneous global learning amongst a large number of parallel agents, enabling emerging AI such as LLMs to be trained across demographically diverse data. Central to this being efficient is the ability for FL to perform sparse gradient updates and...

SUSE CVE-2021-29982

Due to incorrect JIT optimization, we incorrectly interpreted data from the wrong type of object, resulting in the potential leak of a single bit of memory. This vulnerability affects Firefox 91 and Thunderbird 91...

Apple MAC OS X Memory Bit Reversal Elevation of Privilege Vulnerability

Apple Mac OS X is a commercial operating system. Apple Mac OS X handles memory inversion with security issues that allow attackers to run malicious applications to trigger memory corruption to elevate privileges...

DRAM 'Rowhammer' Memory Bit Flip Privilege Elevation Vulnerability

DRAM, or Dynamic Random Access Memory, is the most common type of system memory. DRAM devices have security vulnerabilities that allow a local user to run a program that continuously accesses the DRAM, flipping the value of a cell from 1 to 0, or vice versa, allowing elevated privileges to execut...

Exploiting the DRAM rowhammer bug to gain kernel privileges

Rowhammer blog post draft Posted by Mark Seaborn, sandbox builder and breaker, with contributions by Thomas Dullien, reverse engineer This guest post continues Project Zero’s practice of promoting excellence in security research on the Project Zero blog Overview “Rowhammer” is a problem with some...