Italiano
English
Summary:
scm/define-stencil-commands.scm in LilyPond through 2.20.0, and 2.21.x through 2.21.4, when -dsafe is used, lacks restrictions on embedded-ps and embedded-svg, as demonstrated by including dangerous PostScript code.
Published:
Wednesday, August 5, 2020 - 14:15
cvss:
5.0