[Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2025-60458/uxplay
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 31 08:02:15 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7b38c456 by Salvatore Bonaccorso at 2025-12-31T09:01:41+01:00
Reference upstream commit for CVE-2025-60458/uxplay
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1533,6 +1533,7 @@ CVE-2025-60458 (UxPlay 1.72 contains a double free vulnerability in its RTSP req
NOTE: https://github.com/0pepsi/CVE-2025-60458
NOTE: https://github.com/FDH2/UxPlay/issues/486
NOTE: https://github.com/FDH2/UxPlay/issues/441
+ NOTE: Fixed by: https://github.com/FDH2/UxPlay/commit/747d9ffadfc126c6951eca7eae7063e50a7c3f78 (v1.72.3)
CVE-2025-57462 (Stored cross-site scripting (xss) in machsol machpanel 8.0.32 allows a ...)
NOT-FOR-US: machsol machpanel
CVE-2025-57460 (File upload vulnerability in machsol machpanel 8.0.32 allows attacker ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7b38c4568ab72fa615bfd16a291a0b896b383d31
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7b38c4568ab72fa615bfd16a291a0b896b383d31
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251231/fd0b10dd/attachment.htm>
More information about the debian-security-tracker-commits
mailing list