Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 519
Alerts This Week
Warning Icon 1 519

Scientific Linux 7 SLSA-2022-5234-1 Moderate python-pip Directory Traversal

Scientific Large Esm H446
python-pip: directory traversal in _download_http_url() function in src/pip/_internal/download.py (CVE-2019-20916) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE SL7 noarch python-virtualenv-15.1.0-7.el7_9.noarch.rpm - Scientific Linux Development Team
Synopsis:          Moderate: python-virtualenv security update
Advisory ID:       SLSA-2022:5234-1
Issue Date:        2022-06-28
CVE Numbers:       CVE-2019-20916
--

Security Fix(es):

* python-pip: directory traversal in _download_http_url() function in
src/pip/_internal/download.py (CVE-2019-20916)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
--

SL7
  noarch
    python-virtualenv-15.1.0-7.el7_9.noarch.rpm

- Scientific Linux Development Team