2 matches found
MGASA-2023-0325 Updated lilypond packages fix a security vulnerability
Updated lilypond packages fix a security vulnerability: LilyPond before 2.24 allows attackers to bypass the -dsafe protection mechanism via output-def-lookup or output-def-scope, as demonstrated by dangerous Scheme code in a .ly file that causes arbitrary code execution during conversion to a...
OPENSUSE-SU-2023:0137-1 Security update for guile1, lilypond
This update for guile1, lilypond fixes the following issues: guile1: - Add service file to download release from git excluding the directory with commercial non free files. - Update to version 2.2.6 to enable lilypond to be updated to 2.24.1 to fix boo1210502 and CVE-2020-17354. lilypond: - Updat...