2019-04-30 22:49:10
mitre
PUBLISHED
gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an unsafe shell call enabling shell injection via a User ID.