Monthly Archives: October 2015

NVD

CVE-2015-6328

The web framework in Cisco Prime Collaboration Assurance (PCA) 10.5(1) allows remote authenticated users to bypass intended access restrictions and read arbitrary files via a crafted URL, aka Bug ID CSCus88380.

NVD

CVE-2015-6332

Cisco Prime Infrastructure 2.2 allows remote attackers to cause a denial of service (daemon hang) by sending many SSL renegotiation requests, aka Bug ID CSCuv56830.

CentOS

CESA-2015:1890 Important CentOS 7 spice SecurityUpdate

CentOS Errata and Security Advisory 2015:1890 Important

Upstream details at : https://rhn.redhat.com/errata/RHSA-2015-1890.html

The following updated files have been uploaded and are currently 
syncing to the mirrors: ( sha256sum Filename ) 

x86_64:
2438f62fb457d22d95b6ca40e68743fc1765e9e34c1966eb30aa605f34e468a2  spice-server-0.12.4-9.el7_1.3.x86_64.rpm
37030fca2cc111cd73bf4ae8c233d30f75db887e8103eb8b91428b0777c61f50  spice-server-devel-0.12.4-9.el7_1.3.x86_64.rpm

Source:
10eefd09b96d5184be8b9c3addfcabbf37382b9dfc587260c2ebdf09913872ba  spice-0.12.4-9.el7_1.3.src.rpm