Home > Vulnerability Database > CVE-2020-35499

Mend.io Vulnerability Database

CVE-2020-35499

Good to know:

Date: February 19, 2021

A NULL pointer dereference flaw in Linux kernel versions prior to 5.11 may be seen if sco_sock_getsockopt function in net/bluetooth/sco.c do not have a sanity check for a socket connection, when using BT_SNDMTU/BT_RCVMTU for SCO sockets. This could allow a local attacker with a special user privilege to crash the system (DOS) or leak kernel internal information. After conducting further research, Mend has determined that all versions of Linux Kernel up to version v5.10.4 are vulnerable to CVE-2020-35499.

Language: C

Severity Score

6.7

Related Resources (5)

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2020-35499

Url: https://bugzilla.redhat.com/show_bug.cgi?id=1910048

Url: https://security-tracker.debian.org/tracker/CVE-2020-35499

Url: https://nvd.nist.gov/vuln/detail/CVE-2020-35499

Url: https://www.mend.io/vulnerability-database/CVE-2020-35499

Severity Score

6.7

Weakness Type (CWE)

NULL Pointer Dereference

CWE-476

Top Fix

Upgrade Version

Upgrade to version linux-yocto - 4.8.26+gitAUTOINC+1c60e003c7_27efc3ba68;linux-yocto - 4.10+gitAUTOINC+805ea440c7_b259a5d744;linux-libc-headers - 5.13

Learn More

CVSS v3.1

Base Score:	6.7
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	HIGH
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

CVSS v2

Base Score:	7.2
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	COMPLETE
Integrity (I):	COMPLETE
Availability (A):	COMPLETE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2020-35499

Good to know:

Date: February 19, 2021

Language: C

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?