*** This bug is a security vulnerability *** Public security bug reported:
See the detailed issue here: https://www.intel.com/content/www/us/en /security-center/advisory/intel-sa-00069.html On Feb 27, 2017 Intel has revealed this security issue that when the rx buffer is full and not being processed, the buffer will hang and never reset. Recently we found this issue in 18.04.2, we have a shared port setup on BMC and host network, where bmc and host share the same nic rx queue, when the host kernel panic, the rx queue gradually become full and eventually cause DOS on BMC. I have verified the issue affects both 18.04-ga (i40e 2.1.14-k) and 18.04-hwe (i40e 2.3.5), I compile the latest i40e driver 2.7.29 and the issue is gone. Intel should had the driver fixed after version 2.3.6. The current i40e driver needs patch. ** Affects: linux (Ubuntu) Importance: Undecided Status: New ** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1822726 Title: i40e driver: CVE-2016-8105 X710 buffer overflow cause denial of service Status in linux package in Ubuntu: New Bug description: See the detailed issue here: https://www.intel.com/content/www/us/en /security-center/advisory/intel-sa-00069.html On Feb 27, 2017 Intel has revealed this security issue that when the rx buffer is full and not being processed, the buffer will hang and never reset. Recently we found this issue in 18.04.2, we have a shared port setup on BMC and host network, where bmc and host share the same nic rx queue, when the host kernel panic, the rx queue gradually become full and eventually cause DOS on BMC. I have verified the issue affects both 18.04-ga (i40e 2.1.14-k) and 18.04-hwe (i40e 2.3.5), I compile the latest i40e driver 2.7.29 and the issue is gone. Intel should had the driver fixed after version 2.3.6. The current i40e driver needs patch. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1822726/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
