Lucene search
RedhatCVELIST:CVE-2020-35499HistoryFeb 19, 2021 - 7:49 p.m.
CVE-2020-35499
2021-02-1919:49:58
CWE-476
redhat
www.cve.org
16
linux kernel
null pointer dereference
local attacker
system crash
dos
kernel internal information
A NULL pointer dereference flaw in Linux kernel versions prior to 5.11 may be seen if sco_sock_getsockopt function in net/bluetooth/sco.c do not have a sanity check for a socket connection, when using BT_SNDMTU/BT_RCVMTU for SCO sockets. This could allow a local attacker with a special user privilege to crash the system (DOS) or leak kernel internal information.
CNA Affected
[
{
"product": "kernel",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "kernel 5.11"
}
]
}
]Related
cbl_mariner
cbl_mariner
CVE-2020-35499 affecting package kernel for versions less than 5.10.78.1-1
2022-04-09 06:52:47
CVE-2020-35499 affecting package kernel 5.10.189.1-1
2021-09-09 15:03:26
redhatcve
redhatcve
CVE-2020-35499
2020-12-31 06:28:16
f5
f5
K47455661 : Linux kernel vulnerability CVE-2020-35499
2022-02-23 00:00:00
cve
cve
CVE-2020-35499
2021-02-19 20:15:12
prion
prion
Null pointer dereference
2021-02-19 20:15:00
debiancve
debiancve
CVE-2020-35499
2021-02-19 20:15:12
nvd
nvd
CVE-2020-35499
2021-02-19 20:15:12
ubuntucve
ubuntucve
CVE-2020-35499
2021-02-19 00:00:00
nessus
nessus
Photon OS 4.0: Linux PHSA-2021-4.0-0007
2021-04-07 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2021-0007
2021-04-07 00:00:00
Critical Photon OS Security Update - PHSA-2021-4.0-0007
2021-04-03 00:00:00