The recently released Ubuntu Security Notice USN-572-1 addresses a vulnerability in apt-listchanges that could enable local adversaries to run unauthorized commands.
Felipe Sateler discovered that apt-listchanges did not use safe paths when
importing additional Python libraries