[Git][security-tracker-team/security-tracker][master] Reference original report for CVE-2025-60458
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Dec 30 19:34:40 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
92df8825 by Salvatore Bonaccorso at 2025-12-30T20:31:43+01:00
Reference original report for CVE-2025-60458
Upstream inicates this might not be a valid CVE, cf. comments in
https://github.com/FDH2/UxPlay/issues/486#issuecomment-3700238120 .
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1230,6 +1230,7 @@ CVE-2025-60458 (UxPlay 1.72 contains a double free vulnerability in its RTSP req
- uxplay <unfixed>
NOTE: https://github.com/0pepsi/CVE-2025-60458
NOTE: https://github.com/FDH2/UxPlay/issues/486
+ NOTE: https://github.com/FDH2/UxPlay/issues/441
CVE-2025-57462 (Reflected Cross site scripting (xss) in machsol machpanel 8.0.32 allow ...)
NOT-FOR-US: machsol machpanel
CVE-2025-57460 (File upload vulnerability in machsol machpanel 8.0.32 allows attacker ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92df8825d0ac3f193473e8072a219270fde2cf63
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92df8825d0ac3f193473e8072a219270fde2cf63
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251230/0623c975/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list