Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A NULL pointer dereference flaw in Linux kernel versions prior to 5.11 may be seen if sco_sock_getsockopt function in net/bluetooth/sco.c do not have a sanity check for a socket connection, when using BT_SNDMTU/BT_RCVMTU for SCO sockets. This could allow a local attacker with a special user privilege to crash the system (DOS) or leak kernel internal information.
CVSS Information
N/A
Vulnerability Type
空指针解引用
Vulnerability Title
Linux kernel 代码问题漏洞
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux Kernel 中存在代码问题漏洞。该漏洞源于当使用BT_SNDMTU/BT_RCVMTU SCO sockets时,net/bluetooth/sco.c中的sco_sock_getsockopt函数没有检查Socket连接,本地攻击者可通过该漏洞攻击系统或获得敏感信息。 以下产品及版本受到影响:Linux Kernel 5.11。
CVSS Information
N/A
Vulnerability Type
N/A