Security update for signing-party (moderate)

2019-05-13T18:14:26
ID OPENSUSE-SU-2019:1388-1
Type suse
Reporter Suse
Modified 2019-05-13T18:14:26

Description

This update for signing-party fixes the following issues:

  • CVE-2019-11627: The gpg-key2ps tool in signing-party contained an unsafe shell call enabling shell injection via a User ID.