3 matches found
CVE-2021-36710
ToaruOS 1.99.2 is affected by incorrect access control via the kernel. Improper MMU management and having a low GDT address allows it to be mapped in userland. A call gate can then be written to escalate to CPL 0...
CVE-2019-13047
kernel/sys/syscall.c in ToaruOS through 1.10.9 has incorrect access control in syssysfunc case 9 for TOARUSYSFUNCSETHEAP, allowing arbitrary kernel pages to be mapped into user land, leading to root access...
CVE-2022-38934
readelf in ToaruOS 2.0.1 has some arbitrary address read vulnerabilities when parsing a crafted ELF file...