CVE

CVE-2019-13047

CVE-2019-13047

kernel/sys/syscall.c in ToaruOS through 1.10.9 has incorrect access control in sys_sysfunc case 9 for TOARU_SYS_FUNC_SETHEAP, allowing arbitrary kernel pages to be mapped into user land, leading to root access.

Source: CVE-2019-13047

Exit mobile version