A memory leak in the i40e_setup_macvlans() function in drivers/net/ethernet/intel/i40e/i40e_main.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering i40e_setup_channel() failures Reference: https://github.com/torvalds/linux/commit/27d461333459d282ffa4a2bdb6b215a59d493a8f
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1774973]
Statement: This issue is rated as having Moderate impact because of the preconditions needed to trigger the error code path.
Mitigation: In order to mitigate this issue it is possible to prevent the affected code from being loaded by blacklisting the kernel module i40e. For instructions relating to how to blacklist a kernel module refer to: https://access.redhat.com/solutions/41278 .