A subtle bug in QEMU’s virtio-net RSS implementation has been quietly remaking risk calculations for operators who run multi‑tenant or untrusted virtual machines: when RSS (Receive Side Scaling) is enabled for the virtio‑net device, an attacker with elevated privileges inside the guest can...
