{"id":"CVE-2024-42291","summary":"ice: Add a per-VF limit on number of FDIR filters","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nice: Add a per-VF limit on number of FDIR filters\n\nWhile the iavf driver adds a s/w limit (128) on the number of FDIR\nfilters that the VF can request, a malicious VF driver can request more\nthan that and exhaust the resources for other VFs.\n\nAdd a similar limit in ice.","modified":"2026-05-18T05:58:55.973073729Z","published":"2024-08-17T09:09:00.944Z","related":["SUSE-SU-2024:3190-1","SUSE-SU-2024:3194-1","SUSE-SU-2024:3195-1","SUSE-SU-2024:3209-1","SUSE-SU-2024:3383-1","SUSE-SU-2024:3483-1","SUSE-SU-2025:20044-1","SUSE-SU-2025:20047-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42291.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/292081c4e7f575a79017d5cbe1a0ec042783976f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6ebbe97a488179f5dc85f2f1e0c89b486e99ee97"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8e02cd98a6e24389d476e28436d41e620ed8e559"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d62389073a5b937413e2d1bc1da06ccff5103c0c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e81b674ead8e2172b2a69e7b45e079239ace4dbc"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42291.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-42291"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"1f7ea1cd6a3748427512ccc9582e18cd9efea966"},{"fixed":"e81b674ead8e2172b2a69e7b45e079239ace4dbc"},{"fixed":"8e02cd98a6e24389d476e28436d41e620ed8e559"},{"fixed":"d62389073a5b937413e2d1bc1da06ccff5103c0c"},{"fixed":"292081c4e7f575a79017d5cbe1a0ec042783976f"},{"fixed":"6ebbe97a488179f5dc85f2f1e0c89b486e99ee97"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42291.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"5.13.0"},{"fixed":"5.15.172"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.103"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.44"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.10.3"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42291.json"}}],"schema_version":"1.7.5"}