Ubuntu has issued an advisory on November 18:
The issues are fixed upstream in 0.13.3.
Updated python-ecdsa packages fix security vulnerability:
It was discovered that python-ecdsa incorrectly handled certain signatures. A
remote attacker could possibly use this issue to cause python-ecdsa to generate
unexpected exceptions, resulting in a denial of service (CVE-2019-14853).
It was discovered that python-ecdsa incorrectly verified DER encoding in
signatures. A remote attacker could use this issue to perform certain
malleability attacks (CVE-2019-14859).
Updated packages in core/updates_testing:
MGA7-64 Plasma on Lenovo B50
No installation issues.
No previous updates on these packages.
I have been googling a bit for a simple example for this, but the ones I found involved the installation and usage of other developers stuff for python, so I gave up on those.
If others agree, I will not oppose an OK on clean install.