Описание
Security update for lilypond
This update for lilypond fixes the following issues:
- CVE-2018-10992: lilypond: Does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argument-injection attacks (bsc#1093056)
- packages do not build reproducibly from unsorted input (bsc#1041090)
Список пакетов
openSUSE Leap 42.3
lilypond-2.18.2-7.3.1
lilypond-century-schoolbook-l-fonts-2.18.2-7.3.1
lilypond-doc-2.18.2-7.3.1
lilypond-doc-cs-2.18.2-7.3.1
lilypond-doc-de-2.18.2-7.3.1
lilypond-doc-es-2.18.2-7.3.1
lilypond-doc-fr-2.18.2-7.3.1
lilypond-doc-hu-2.18.2-7.3.1
lilypond-doc-it-2.18.2-7.3.1
lilypond-doc-ja-2.18.2-7.3.1
lilypond-doc-nl-2.18.2-7.3.1
lilypond-doc-zh-2.18.2-7.3.1
lilypond-emmentaler-fonts-2.18.2-7.3.1
lilypond-fonts-common-2.18.2-7.3.1
Ссылки
- E-Mail link for openSUSE-SU-2018:1360-1
- SUSE Security Ratings
Описание
lilypond-invoke-editor in LilyPond 2.19.80 does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argument-injection attacks via a crafted URL, as demonstrated by a --proxy-pac-file argument, because the GNU Guile code uses the system Scheme procedure instead of the system* Scheme procedure. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-17523.
Затронутые продукты
openSUSE Leap 42.3:lilypond-2.18.2-7.3.1
openSUSE Leap 42.3:lilypond-century-schoolbook-l-fonts-2.18.2-7.3.1
openSUSE Leap 42.3:lilypond-doc-2.18.2-7.3.1
openSUSE Leap 42.3:lilypond-doc-cs-2.18.2-7.3.1
Ссылки
- CVE-2018-10992
- SUSE Bug 1093056