Comment 4 for bug 1732294

Contacting <email address hidden> with as much detail as can sounds like a good things to do, see https://www.kernel.org/doc/html/latest/admin-guide/security-bugs.html .

IIUC, the load happen when an instance simply tries to spoof many new mac address? If so, that doesn't seems like something we need to keep under embargo and it could probably be easier to fix this issue in public.