4.1.5

DATE	CVE	VULNERABILITY TITLE	RISK
2016-07-12	CVE-2015-3192	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Pivotal Spring Framework before 3.2.14 and 4.x before 4.1.7 do not properly process inline DTD declarations when DTD is not entirely disabled, which allows remote attackers to cause a denial of service (memory consumption and out-of-memory errors) via a crafted XML file. network vmware pivotal-software fedoraproject CWE-119	4.3