{"id":"CVE-2015-7295","details":"hw/virtio/virtio.c in the Virtual Network Device (virtio-net) support in QEMU, when big or mergeable receive buffers are not supported, allows remote attackers to cause a denial of service (guest network consumption) via a flood of jumbo frames on the (1) tuntap or (2) macvtap interface.","modified":"2026-04-16T01:42:43.117275923Z","published":"2015-11-09T16:59:07Z","withdrawn":"2026-01-27T04:15:07.428262Z","related":["SUSE-SU-2016:1560-1","SUSE-SU-2016:1698-1","SUSE-SU-2016:1785-1"],"references":[{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169624.html"},{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169767.html"},{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169802.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3469"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3470"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3471"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2015/09/18/5"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2015/09/18/9"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/82672"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201602-01"}],"schema_version":"1.7.3"}