Acknowledged
Created: Oct 15, 2025
Updated: Oct 17, 2025
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]i40e: add validation for ring_len param[EOL][EOL]The `ring_len` parameter provided by the virtual function (VF)[EOL]is assigned directly to the hardware memory context (HMC) without[EOL]any validation.[EOL][EOL]To address this, introduce an upper boundary check for both Tx and Rx[EOL]queue lengths. The maximum number of descriptors supported by the[EOL]hardware is 8k-32.[EOL]Additionally, enforce alignment constraints: Tx rings must be a multiple[EOL]of 8, and Rx rings must be a multiple of 32.
