from 0, < 1.3.1-1
HIGH7.8CVE-2018-20225An issue was discovered in pip (all versions) because it installs the version with the highest version number, even if the user had intende… from 0
from 0, < 9.0.1-2+deb9u2
HIGH7.5python-pip - security update
from 0, < 20.0.2-1
MEDIUM6.2pip lack of randomness in build directory
from 0, < 1.5.6-4
MEDIUM5.9Improper Authentication in pip
from 0, < 1.4.1-1
MEDIUM5.7Improper Input Validation in pip
from 0, < 20.3.4-2
MEDIUM5.5pip would treat console_scripts and gui_scripts as paths instead of file names without sanitizing the resolved absolute path to the install…
from 0
MEDIUM5.5python-pip - security update
from 0, < 20.3.4-4+deb11u2
MEDIUM5.5python-pip - security update
from 0, < 20.3.4-4+deb11u2
—pip Vulnerable to Inclusion of Functionality from Untrusted Control Sphere
from 0
—pip has an interpretation conflict due to handling both concatenated tar and ZIP files as ZIP files
from 0
—pip Path Traversal vulnerability
from 0
—pip's fallback tar extraction doesn't check symbolic links point to extraction directory
from 0, < 20.3.4-4+deb11u2