Due to a ransomware attack, the wiki was reverted to a July 2022 version. . We apologize for the lack of a more recent valid backup.
...
You can find the template demonstrating the structure of advisories here.
[Important] [CVE-2015-7516] onos-ifwd: denial-of-service (DoS) due to
...
exceptions in application packet processors
Description
It was found that the packet deserializers in ONOS would throw exceptions when handling jumbo frames. The exceptions ONOS core did not properly protect itself from exceptions thrown in application packet processors. Exceptions thrown by applications were not caught and handled, which would result in the relevant switch being disconnected because an exception occurred in an I/O thread. A An application could exhibit behavior (either intentionally or unintentionally) which would allow a remote unauthenticated attacker could use this flaw to perform a denial-of-service (DoS) attack by causing ONOS to disconnect switches.
...