{
  "affected": [
    {
      "database_specific": {
        "unresolved_ranges": [
          {
            "events": [
              {
                "introduced": "5.10"
              },
              {
                "fixed": "5.10.4"
              }
            ]
          }
        ]
      }
    }
  ],
  "details": "A NULL pointer dereference flaw in Linux kernel versions prior to 5.11 may be seen if sco_sock_getsockopt function in net/bluetooth/sco.c do not have a sanity check for a socket connection, when using BT_SNDMTU/BT_RCVMTU for SCO sockets. This could allow a local attacker with a special user privilege to crash the system (DOS) or leak kernel internal information.",
  "id": "CVE-2020-35499",
  "modified": "2026-03-13T21:52:48.402316619Z",
  "published": "2021-02-19T20:15:12.757Z",
  "references": [
    {
      "type": "FIX",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1910048"
    }
  ],
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}