signing-party 2.10-2 source package in Debian
Changelog
signing-party (2.10-2) unstable; urgency=high * gpg-key2ps: Security fix for CVE-2019-11627: unsafe shell call enabling shell injection via a User ID. Use Perl's (core) module Encode.pm instead of shelling out to `iconv`. (Closes: #928256.) -- Guilhem Moulin <email address hidden> Sun, 05 May 2019 15:13:54 +0200
Upload details
- Uploaded by:
- Guilhem Moulin
- Uploaded to:
- Sid
- Original maintainer:
- Guilhem Moulin
- Architectures:
- any
- Section:
- misc
- Urgency:
- Very Urgent
See full publishing history Publishing
Series | Published | Component | Section | |
---|---|---|---|---|
Buster | release | main | misc |
Builds
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
signing-party_2.10-2.dsc | 1.9 KiB | 28701115b3339520f31da472f68b35876a8c1688c55dbadf896a1aac446c87ff |
signing-party_2.10.orig.tar.gz | 217.6 KiB | e19416cbd2bc723593334e2471d311f413794faa751b8b2e452e0792fc0431eb |
signing-party_2.10-2.debian.tar.xz | 20.3 KiB | 05e133cc1a941b6676487c0e91fb60b70e2417f81843aa41245855ccc8de6c97 |
Available diffs
- diff from 2.10-1 to 2.10-2 (432 bytes)
No changes file available.