High severity vulnerability that affects python-gnupg · CVE-2013-7323 · GitHub Advisory Database · GitHub

High severity vulnerability that affects python-gnupg

High severity GitHub Reviewed Published Nov 6, 2018 to the GitHub Advisory Database • Updated Jan 9, 2023

Package

python-gnupg (pip)

Affected versions

< 0.3.5

Patched versions

0.3.7

Description

python-gnupg before 0.3.5 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in unspecified vectors.

References

Published to the GitHub Advisory Database Nov 6, 2018

Reviewed Jun 16, 2020

Last updated Jan 9, 2023