-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 01 May 2019 12:21:59 +0200 Source: signing-party Architecture: source Version: 2.10-1 Distribution: unstable Urgency: high Maintainer: Guilhem Moulin <guilhem@debian.org> Changed-By: Guilhem Moulin <guilhem@debian.org> Closes: 928256 Changes: signing-party (2.10-1) unstable; urgency=high . * gpg-key2ps: Security fix for CVE-2018-15599: unsafe shell call enabling shell injection via a User ID. Use Perl's (core) module Encode.pm instead of shelling out to `iconv`. (Closes: #928256.) Checksums-Sha1: a000ee2d86d2a7ddd0b45c366284b59faf3a1e2c 1953 signing-party_2.10-1.dsc 6baf98f21af48b3aa5b5d26a41c4a87646b7ee94 222778 signing-party_2.10.orig.tar.gz ad8d291f46b3a2899e3e92f26bcb5033c80e45ea 20812 signing-party_2.10-1.debian.tar.xz ad05c4707b33e33c4a42864a321efaa6f748da36 6525 signing-party_2.10-1_amd64.buildinfo Checksums-Sha256: 3e4cc0273071e358c397b6f2bb05abee0c94a01a5c88b718df97de5826764b3e 1953 signing-party_2.10-1.dsc e19416cbd2bc723593334e2471d311f413794faa751b8b2e452e0792fc0431eb 222778 signing-party_2.10.orig.tar.gz c8ddc1e0873d072c375787d7b992cfad585d873ada2ecf129741afbd7271be03 20812 signing-party_2.10-1.debian.tar.xz 57216c034f7c9632262e31c7b5b774aa1df45a80b808d3654ee1764f7805a8c8 6525 signing-party_2.10-1_amd64.buildinfo Files: c2b47c9762a838504bb7da03de99e052 1953 misc optional signing-party_2.10-1.dsc 9a8861395a81164067a6d88a34f029dd 222778 misc optional signing-party_2.10.orig.tar.gz 50ec0ea54d6a08ae56d0d3a4de088e04 20812 misc optional signing-party_2.10-1.debian.tar.xz 04912484f76a9fe2eb51baf0977c78ba 6525 misc optional signing-party_2.10-1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEERpy6p3b9sfzUdbME05pJnDwhpVIFAlzJc+wACgkQ05pJnDwh pVLKVQ/+PIWN+aH30cXycMfpFQ3nqlL7hy1EoiUH5nUNQ9xinoN+IYScBYM3a/Vh ny2IQiChbE57NsZO7c+ZxG0eX+i4WkIwDcxj37nZ94C4o29N83Gu0gYy/syaevs6 AXQ9YRLnCjQvuVJOaKnIwcOhJoWsHf4dLQcEJzitEcGda98LUSG87nManTa7yUVV WBVpazaw4WaFZjbJclXeHtFLM1aaJnSUGCH/drCj74kqRdT56pcsi56m/oG8bVmC iiezgopxDarZDL+L8khWComyWyWUWkvbN63csTerombtNKKZ3pfkvJDTWDgyPA0G x0xtqdF2RM5oY+EcPGh3IrNWvY2c1RgghD3+B2+0lKETI7fU4gn5BaFol99bRzi9 RAeVYDWcpFQ/WHVPfFgSxw6Hi1MyuDskmAtxgjdrVApXK5UUE0UxeAdtY+yjfZ1P Xj58xsPI1UOW3oIEb05EEoEVYMmr2ET3tnfUsScdmOkLs6MiUfP/vBIs8C3ekh6v XzcRAR3j/9z5ODOE74Qh1FSFtgyxwEYZnIlpX4ct+q3OaVOUeaM6lGk/NmGawK2d VgMxWJ+aN958yCWvfhrV1gjYUj7X48k+/Tcqh3Ns318647gox/xgF9hDqyJVMN3U gbJisOKZnbGZQ0ZAjr3GnIMXO0hq5/GUbUqkuGuwCm4Gy1vnsiQ= =EhYm -----END PGP SIGNATURE-----