Due to a ransomware attack, the wiki was reverted to a July 2022 version. . We apologize for the lack of a more recent valid backup.
...
You can find the template demonstrating the structure of future advisories here.
[Important] [CVE-
...
2015-1166] onos-of-ctl: Exception thrown while deserializing malformed packets
Description
Packet-ins coming from the dataplane can contain truncated or malformed packets. ONOS would throw an exception while attempting to deserialize these packets, which would result in the switch being disconnected because and exception occurred in an I/O thread. This opened a DoS vulnerability in ONOS, where an attacker could send malformed packets into the network and cause ONOS to disconnect switches.
...