[Kernel-packages] [Bug 1822726] Re: i40e driver: CVE-2016-8105 X710 buffer overflow cause denial of service
Due to the nature of this issue, no log can be provided It also require very specific setup to reproduce the issue: - A Network Adaptor of Intel X710 Series - BMC and host use shared network mode on X710 port - trigger a kernel panic on host, BMC IP will be unreachable around 15 mins. ** Changed in: linux (Ubuntu) Status: Incomplete => Confirmed -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1822726 Title: i40e driver: CVE-2016-8105 X710 buffer overflow cause denial of service Status in linux package in Ubuntu: Confirmed Bug description: See the detailed issue here: https://www.intel.com/content/www/us/en /security-center/advisory/intel-sa-00069.html On Feb 27, 2017 Intel has revealed this security issue that when the rx buffer is full and not being processed, the buffer will hang and never reset. Recently we found this issue in 18.04.2, we have a shared port setup on BMC and host network, where bmc and host share the same nic rx queue, when the host kernel panic, the rx queue gradually become full and eventually cause DOS on BMC. I have verified the issue affects both 18.04-ga (i40e 2.1.14-k) and 18.04-hwe (i40e 2.3.5), I compile the latest i40e driver 2.7.29 and the issue is gone. Intel should had the driver fixed after version 2.3.6. The current i40e driver needs patch. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1822726/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1822726] Re: i40e driver: CVE-2016-8105 X710 buffer overflow cause denial of service
** Description changed: See the detailed issue here: https://www.intel.com/content/www/us/en /security-center/advisory/intel-sa-00069.html On Feb 27, 2017 Intel has revealed this security issue that when the rx buffer is full and not being processed, the buffer will hang and never reset. Recently we found this issue in 18.04.2, we have a shared port setup on BMC and host network, where bmc and host share the same nic rx queue, when the host kernel panic, the rx queue gradually become full and eventually cause DOS on BMC. I have verified the issue affects both 18.04-ga (i40e 2.1.14-k) and - 18.04-hwe (i40e 2.3.5), Intel had the driver fixed after version 2.3.6. + 18.04-hwe (i40e 2.3.5), I compile the latest i40e driver 2.7.29 and the + issue is gone. Intel should had the driver fixed after version 2.3.6. The current i40e driver needs patch. -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1822726 Title: i40e driver: CVE-2016-8105 X710 buffer overflow cause denial of service Status in linux package in Ubuntu: Incomplete Bug description: See the detailed issue here: https://www.intel.com/content/www/us/en /security-center/advisory/intel-sa-00069.html On Feb 27, 2017 Intel has revealed this security issue that when the rx buffer is full and not being processed, the buffer will hang and never reset. Recently we found this issue in 18.04.2, we have a shared port setup on BMC and host network, where bmc and host share the same nic rx queue, when the host kernel panic, the rx queue gradually become full and eventually cause DOS on BMC. I have verified the issue affects both 18.04-ga (i40e 2.1.14-k) and 18.04-hwe (i40e 2.3.5), I compile the latest i40e driver 2.7.29 and the issue is gone. Intel should had the driver fixed after version 2.3.6. The current i40e driver needs patch. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1822726/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1822726] [NEW] i40e driver: CVE-2016-8105 X710 buffer overflow cause denial of service
*** This bug is a security vulnerability *** Public security bug reported: See the detailed issue here: https://www.intel.com/content/www/us/en /security-center/advisory/intel-sa-00069.html On Feb 27, 2017 Intel has revealed this security issue that when the rx buffer is full and not being processed, the buffer will hang and never reset. Recently we found this issue in 18.04.2, we have a shared port setup on BMC and host network, where bmc and host share the same nic rx queue, when the host kernel panic, the rx queue gradually become full and eventually cause DOS on BMC. I have verified the issue affects both 18.04-ga (i40e 2.1.14-k) and 18.04-hwe (i40e 2.3.5), I compile the latest i40e driver 2.7.29 and the issue is gone. Intel should had the driver fixed after version 2.3.6. The current i40e driver needs patch. ** Affects: linux (Ubuntu) Importance: Undecided Status: New ** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1822726 Title: i40e driver: CVE-2016-8105 X710 buffer overflow cause denial of service Status in linux package in Ubuntu: New Bug description: See the detailed issue here: https://www.intel.com/content/www/us/en /security-center/advisory/intel-sa-00069.html On Feb 27, 2017 Intel has revealed this security issue that when the rx buffer is full and not being processed, the buffer will hang and never reset. Recently we found this issue in 18.04.2, we have a shared port setup on BMC and host network, where bmc and host share the same nic rx queue, when the host kernel panic, the rx queue gradually become full and eventually cause DOS on BMC. I have verified the issue affects both 18.04-ga (i40e 2.1.14-k) and 18.04-hwe (i40e 2.3.5), I compile the latest i40e driver 2.7.29 and the issue is gone. Intel should had the driver fixed after version 2.3.6. The current i40e driver needs patch. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1822726/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
