Lucene search
F5F5:K47455661HistoryFeb 23, 2022 - 12:00 a.m.
K47455661 : Linux kernel vulnerability CVE-2020-35499
2022-02-2300:00:00
my.f5.com
12
linux kernel
vulnerability
null pointer dereference
local attacker
crash
leak
kernel internal information
sco sockets
Security Advisory Description
A NULL pointer dereference flaw in Linux kernel versions prior to 5.11 may be seen if sco_sock_getsockopt function in net/bluetooth/sco.c do not have a sanity check for a socket connection, when using BT_SNDMTU/BT_RCVMTU for SCO sockets. This could allow a local attacker with a special user privilege to crash the system (DOS) or leak kernel internal information. (CVE-2020-35499)
Impact
There is no impact; F5 products are not affected by this vulnerability.
Related
cbl_mariner
cbl_mariner
CVE-2020-35499 affecting package kernel for versions less than 5.10.78.1-1
2022-04-09 06:52:47
CVE-2020-35499 affecting package kernel 5.10.189.1-1
2021-09-09 15:03:26
redhatcve
redhatcve
CVE-2020-35499
2020-12-31 06:28:16
cve
cve
CVE-2020-35499
2021-02-19 20:15:12
prion
prion
Null pointer dereference
2021-02-19 20:15:00
debiancve
debiancve
CVE-2020-35499
2021-02-19 20:15:12
nvd
nvd
CVE-2020-35499
2021-02-19 20:15:12
ubuntucve
ubuntucve
CVE-2020-35499
2021-02-19 00:00:00
cvelist
cvelist
CVE-2020-35499
2021-02-19 19:49:58
nessus
nessus
Photon OS 4.0: Linux PHSA-2021-4.0-0007
2021-04-07 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2021-0007
2021-04-07 00:00:00
Critical Photon OS Security Update - PHSA-2021-4.0-0007
2021-04-03 00:00:00