VDB
CVE-2019-12818
CVE-2019-12818
PUBLISHED
An issue was discovered in the Linux kernel before 4.20.15. The nfc_llcp_build_tlv function in net/nfc/llcp_commands.c may return NULL. If the caller does not check for this, it will trigger a NULL pointer dereference. This will cause denial of service. This affects nfc_llcp_build_gb in net/nfc/llcp_core.c.
EPSS 5.46% · 90.3th percentile
Risk Scores
EPSS Score
5.46%
90.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:18.04:LTS | linux-oracle | 0, 4.15.0-1017.19, 4.15.0-1007.9 |
| Ubuntu:18.04:LTS | linux-snapdragon | 0, 4.4.0-1077.82, 4.4.0-1078.83 |
| Ubuntu:16.04:LTS | linux-oracle | *, 0, 4.15.0-1007.9~16.04.1 |
| Ubuntu:Pro:FIPS:18.04:LTS | linux-gcp-fips | 4.15.0-1001.1, 0 |
| Ubuntu:Pro:FIPS-updates:18.04:LTS | linux-aws-fips | 4.15.0-2000.4, 0 |
| Ubuntu:18.04:LTS | linux-raspi2 | 4.15.0-1021.23, 4.15.0-1020.22, 4.15.0-1018.19 |
| Ubuntu:20.04:LTS | linux-raspi2 | 5.3.0-1014.16, 5.3.0-1007.8, 0 |
| Ubuntu:Pro:14.04:LTS | linux | 3.13.0-54.91, 3.13.0-46.79, 3.13.0-192.243 |
| Ubuntu:16.04:LTS | linux-gcp | 4.15.0-1025.26~16.04.1, *, * |
| Ubuntu:24.04:LTS | linux-raspi-realtime | 6.8.0-2019.20, 0 |
| Ubuntu:16.04:LTS | linux-kvm | 4.4.0-1004.9, 4.4.0-1021.26, 4.4.0-1015.20 |
| Ubuntu:22.04:LTS | linux-realtime | 0, 5.15.0-1032.35 |
| Ubuntu:18.04:LTS | linux-aws | 4.15.0-1010.10, 4.15.0-1009.9, 4.15.0-1045.47 |
| Ubuntu:16.04:LTS | linux | 4.3.0-2.11, 4.3.0-5.16, 4.3.0-6.17 |
| Ubuntu:18.04:LTS | linux-oem | 4.15.0-1035.40, 4.15.0-1004.5, 4.15.0-1006.9 |
| Ubuntu:14.04:LTS | linux-lts-xenial | 4.4.0-28.47~14.04.1, *, * |
| Ubuntu:18.04:LTS | linux-azure | 4.15.0-1035.36, 4.15.0-1036.38, 4.18.0-1011.11~18.04.1 |
| Ubuntu:14.04:LTS | linux-aws | 4.4.0-1009.9, 4.4.0-1022.22, 4.4.0-1023.23 |
| Ubuntu:16.04:LTS | linux-aws | 4.4.0-1004.13, 4.4.0-1038.47, 4.4.0-1018.27 |
| Ubuntu:Pro:FIPS-updates:18.04:LTS | linux-azure-fips | 4.15.0-1002.2, 0 |
…and 19 more
Timeline
- Jun 13, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 22, 2021 EPSS Score
- Oct 25, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 27, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Jul 2, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Jan 7, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2019-12818 third-party-advisory
- https://git.kernel.org/linus/58bdd544e2933a21a51eecf17c3f5f94038261b5 third-party-advisory
- https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.20.15 third-party-advisory
- https://ubuntu.com/security/notices/USN-4094-1 vendor-advisory
- https://ubuntu.com/security/notices/USN-4118-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2019-12818 third-party-advisory