March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – Emotet -IOCs
February 23, 2021Rewterz Threat Alert – Donot APT group – IOCs
February 24, 2021Rewterz Threat Alert – Emotet -IOCs
February 23, 2021Rewterz Threat Alert – Donot APT group – IOCs
February 24, 2021
Severity
Medium
Analysis Summary
CVE-2020-35499
Linux Kernel is vulnerable to a denial of service, caused by a NULL pointer dereference flaw in the sco_sock_getsockopt function in net/bluetooth/sco.c. By sending a specially-crafted request using BT_SNDMTU/BT_RCVMTU for SCO sockets, a local authenticated attacker could exploit this vulnerability to cause the system to crash or kernel internal information.
Impact
Denial of Service
Affected Vendors
Linux
Affected Products
Linux Kernel 5.10
Remediation
Refer to Linux Kernel GIT Repository for patch, upgrade or suggested workaround information.