VYPR

rpm package

opensuse/lilypond&distro=openSUSE Leap 15.2

pkg:rpm/opensuse/lilypond&distro=openSUSE%20Leap%2015.2

Vulnerabilities (1)

  • CVE-2020-17353Aug 5, 2020
    affected < 2.20.0-bp152.2.5.6fixed 2.20.0-bp152.2.5.6

    scm/define-stencil-commands.scm in LilyPond through 2.20.0, and 2.21.x through 2.21.4, when -dsafe is used, lacks restrictions on embedded-ps and embedded-svg, as demonstrated by including dangerous PostScript code.