rpm package
opensuse/lilypond&distro=openSUSE Leap 15.2
pkg:rpm/opensuse/lilypond&distro=openSUSE%20Leap%2015.2
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-17353 | — | < 2.20.0-bp152.2.5.6 | 2.20.0-bp152.2.5.6 | Aug 5, 2020 | scm/define-stencil-commands.scm in LilyPond through 2.20.0, and 2.21.x through 2.21.4, when -dsafe is used, lacks restrictions on embedded-ps and embedded-svg, as demonstrated by including dangerous PostScript code. |
- CVE-2020-17353Aug 5, 2020affected < 2.20.0-bp152.2.5.6fixed 2.20.0-bp152.2.5.6
scm/define-stencil-commands.scm in LilyPond through 2.20.0, and 2.21.x through 2.21.4, when -dsafe is used, lacks restrictions on embedded-ps and embedded-svg, as demonstrated by including dangerous PostScript code.