[Git][security-tracker-team/security-tracker][master] Add CVE-2019-20916/python-pip

Sat Sep 5 09:17:08 BST 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b4f2e07a by Salvatore Bonaccorso at 2020-09-05T10:16:29+02:00
Add CVE-2019-20916/python-pip

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,7 +5,9 @@ CVE-2020-25201
 CVE-2020-25200
 	RESERVED
 CVE-2019-20916 (The pip package before 19.2 for Python allows Directory Traversal when ...)
-	TODO: check
+	- python-pip 20.0.2-1
+	NOTE: https://github.com/pypa/pip/issues/6413
+	NOTE: https://github.com/pypa/pip/commit/a4c735b14a62f9cb864533808ac63936704f2ace (19.2)
 CVE-2020-25199
 	RESERVED
 CVE-2020-25198



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4f2e07adb6ea60ba5f34594899f208288988817

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4f2e07adb6ea60ba5f34594899f208288988817
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200905/2285af27/attachment.html>
