Ubuntu Security Notice 2699-1 - Enrico Zini discovered that HPLIP used a short GPG key ID when downloading keys from the keyserver. An attacker could possibly use this to return a different key with a duplicate short key id and perform a man-in-the-middle attack on printer plugin installations.
41797d8c5e7da29c64727415987d33f892e37e4bff37cc76a08a1cc9d86488b6