VDB

GCVE-110-MAGEIA-2018-412

GCVE-110-MAGEIA-2018-412
Advisory Published
Vulnetix · Advisory published October 26, 2018
lilypond does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argument-injection attacks (CVE-2017-17523).

Affected Products

VendorProductVersionsPlatforms
Mageialilypond2.19.82-1.mga6 (unaffected), 0 (affected)

Browse GCVE Records

73,443 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›