A NULL pointer dereference flaw in Linux kernel versions prior to 5.11 may be seen if sco_sock_getsockopt function in net/bluetooth/sco.c do not have a sanity check for a socket connection, when using BT_SNDMTU/BT_RCVMTU for SCO sockets. This could allow a local attacker with a special user privilege to crash the system (DOS) or leak kernel internal information.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2021-02-19T19:49:58
Updated: 2024-08-04T17:02:07.997Z
Reserved: 2020-12-17T00:00:00
Link: CVE-2020-35499
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-02-19T20:15:12.757
Modified: 2023-07-28T19:37:32.103
Link: CVE-2020-35499
Redhat