Potential NULL Pointer Dereference in AppleTalk Subsystem of Linux Kernel

Potential NULL Pointer Dereference in AppleTalk Subsystem of Linux Kernel

CVE-2019-19227 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

In the AppleTalk subsystem in the Linux kernel before 5.1, there is a potential NULL pointer dereference because register_snap_client may return NULL. This will lead to denial of service in net/appletalk/aarp.c and net/appletalk/ddp.c, as demonstrated by unregister_snap_client, aka CID-9804501fa122.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.