644 matches found
python3.14-pip security update
An update is available for python3.14-pip. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python-pip: python-pip-wheel-26.1.2-1.hum1 noarch python3-pip-26.1.2-1.hum1 noarch python-pip-26.1.2-1.hum1.src src Security Fixes: python-pip: CVE-2026-8643...
SUSE-SU-2026:2758-1 Security update for python-pip
This update for python-pip fixes the following issues - CVE-2026-3219: pip doesn't reject concatenated ZIP bsc1262429. - CVE-2026-6357: pip self-update functionality can import newly installed modules after wheel installation bsc1263442...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python-pip: python-pip-wheel-26.1.1-3.1.hum1 noarch python3-pip-26.1.1-3.1.hum1 noarch python-pip-26.1.1-3.1.hum1.src src Security Fixes: python-pip: CVE-2026-8643...
SUSE-SU-2026:2634-1 Security update for python-pip
This update for python-pip fixes the following issues - CVE-2026-3219: pip doesn't reject concatenated ZIP bsc1262429. - CVE-2026-6357: pip self-update functionality can import newly installed modules after wheel installation bsc1263442. - CVE-2026-8643: path traversal via malicious entry point...
Amazon Linux 2 : python-pip, --advisory ALAS2-2026-3358 (ALAS-2026-3358)
It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3358 advisory. A flaw was found in pip, the package installer for Python. A remote attacker can exploit this vulnerability by tricking a victim into installing a malicious Python wheel. This wheel contains specially...
Amazon Linux 2023 : python3-pip, python3-pip-wheel (ALAS2023-2026-1837)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1837 advisory. A flaw was found in pip, the package installer for Python. A remote attacker can exploit this vulnerability by tricking a victim into installing a malicious Python wheel. This wheel contains specially...
SUSE-SU-2026:22300-1 Security update for python-pip
This update for python-pip fixes the following issue - CVE-2026-8643: Path traversal via malicious entry point name in pip wheel installation allows arbitrary file overwrite bsc1266669...
OPENSUSE-SU-2026:20993-1 Security update for python-pip
This update for python-pip fixes the following issue - CVE-2026-8643: Path traversal via malicious entry point name in pip wheel installation allows arbitrary file overwrite bsc1266669...
OESA-2026-2631 python-pip security update
%changelog Sat Jul 13 2024 yangyuan [email protected] - 23.3.1-2 - Fix CVE-2023-45803 and CVE-2024-37891 Security Fixes: A flaw was found in pip, the package installer for Python. A remote attacker can exploit this vulnerability by tricking a victim into installing a malicious Python wheel...
OESA-2026-2630 python-pip security update
%changelog Sat Jul 13 2024 yangyuan [email protected] - 23.3.1-2 - Fix CVE-2023-45803 and CVE-2024-37891 Security Fixes: A flaw was found in pip, the package installer for Python. A remote attacker can exploit this vulnerability by tricking a victim into installing a malicious Python wheel...
EulerOS Virtualization 2.13.0 : python-pip (EulerOS-SA-2026-2415)
According to the versions of the python-pip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Prior to version 2.33.0, the requests.utils.extractzippedpaths utility function uses a predictable...
EulerOS Virtualization 2.13.1 : python-pip (EulerOS-SA-2026-2386)
According to the versions of the python-pip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Prior to version 2.33.0, the requests.utils.extractzippedpaths utility function uses a predictable...
EulerOS 2.0 SP13 : python-pip (EulerOS-SA-2026-2310)
According to the versions of the python-pip packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Prior to version 2.33.0, the requests.utils.extractzippedpaths utility function uses a predictable filename when...
EulerOS 2.0 SP13 : python-pip (EulerOS-SA-2026-2353)
According to the versions of the python-pip packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Prior to version 2.33.0, the requests.utils.extractzippedpaths utility function uses a predictable filename when...
ROOT-OS-DEBIAN-13-CVE-2026-8643 CVE-2026-8643 in rootio-python-pip - Patched by Root
Root has patched CVE-2026-8643 in the rootio-python-pip package for Root:Debian:13. Multiple fixed versions available...
TencentOS Server 4: python-pip (TSSA-2026:0422)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0422 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
python311-pip-26.1.2-1.1 on GA media (moderate)
python311-pip-26.1.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10940-1 Rating: moderate Cross-References: CVE-2026-8643 CVSS scores: CVE-2026-8643 SUSE : 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now...
EulerOS Virtualization 2.10.0 : python-pip (EulerOS-SA-2026-2061)
According to the versions of the python-pip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in...
EulerOS Virtualization 2.13.0 : python-pip (EulerOS-SA-2026-2183)
According to the versions of the python-pip package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests Session, if the first request is made with...