ELA-452-1 python-pip security update

Debian 10230 Published 2021-07-04 06:21 by Philipp Esselbach

News

A python-pip security update has been released for Debian GNU/Linux 8 Extended LTS to address an incorrectly handled unicode separators in git references.

ELA-452-1 python-pip security update

Package python-pip
Version 1.5.6-5+deb8u2
Related CVEs CVE-2021-3572

It was discovered that pip incorrectly handled unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository.

For Debian 8 jessie, these problems have been fixed in version 1.5.6-5+deb8u2.

We recommend that you upgrade your python-pip packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/
ELA-452-1 python-pip security update

ASA-202107-6: python-fastapi: cross-site request forgery

WinPass11 Guided Installer 0.2.4 released

Community

dhamu
Hello Phil, I have a Linux Tutorial website that curre ...
StephanX
Hi friends, i am new in the Linux universe but i try to ...
Philipp
I would try the XanMod kernel: https://xanmod.org I ...

ELA-452-1 python-pip security update

Windows

Linux

macOS

Community