Candidate: CVE-2017-17523
PublicDate: 2017-12-11 06:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17523
 https://bugs.debian.org/881767
Description:
 lilypond-invoke-editor in LilyPond 2.19.80 does not validate strings before
 launching the program specified by the BROWSER environment variable, which
 allows remote attackers to conduct argument-injection attacks via a crafted
 URL, as demonstrated by a --proxy-pac-file argument.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H [8.8 HIGH]


Patches_lilypond:
upstream_lilypond: released (2.18.2-12)
precise/esm_lilypond: DNE
trusty_lilypond: ignored (reached end-of-life)
trusty/esm_lilypond: DNE (trusty was needed)
xenial_lilypond: ignored (end of standard support, was needed)
zesty_lilypond: ignored (reached end-of-life)
artful_lilypond: ignored (reached end-of-life)
bionic_lilypond: not-affected (2.18.2-12build1)
cosmic_lilypond: not-affected (2.18.2-12build1)
disco_lilypond: not-affected (2.18.2-12build1)
eoan_lilypond: not-affected (2.18.2-12build1)
focal_lilypond: not-affected (2.18.2-12build1)
groovy_lilypond: not-affected (2.18.2-12build1)
hirsute_lilypond: not-affected (2.18.2-12build1)
impish_lilypond: not-affected (2.18.2-12build1)
jammy_lilypond: not-affected (2.18.2-12build1)
devel_lilypond: not-affected (2.18.2-12build1)