NULL pointer dereference vulnerability in nfc_llcp_build_tlv function

NULL pointer dereference vulnerability in nfc_llcp_build_tlv function

CVE-2019-12818 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

An issue was discovered in the Linux kernel before 4.20.15. The nfc_llcp_build_tlv function in net/nfc/llcp_commands.c may return NULL. If the caller does not check for this, it will trigger a NULL pointer dereference. This will cause denial of service. This affects nfc_llcp_build_gb in net/nfc/llcp_core.c.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.