[Git][security-tracker-team/security-tracker][master] Track fixed version for two python-pip issues fixed via unstable

Salvatore Bonaccorso (@carnil) Sun, 24 May 2026 12:00:35 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
92d5d400 by Salvatore Bonaccorso at 2026-05-24T20:59:50+02:00
Track fixed version for two python-pip issues fixed via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -16168,7 +16168,7 @@ CVE-2026-7095 (A vulnerability was identified in 
code-projects Employee Manageme
 CVE-2026-6970 (authd prior to version 0.6.4 contains a logic error in primary 
group I ...)
        NOT-FOR-US: Canonical authd
 CVE-2026-6357 (pip prior to version 26.1 would run self-update check 
functionality af ...)
-       - python-pip <unfixed> (bug #1135110)
+       - python-pip 26.1.1+dfsg-1 (bug #1135110)
        [trixie] - python-pip <no-dsa> (Minor issue)
        [bookworm] - python-pip <no-dsa> (Minor issue)
        [bullseye] - python-pip <postponed> (Minor issue, possible execution 
when installing new Python modules)
@@ -20896,7 +20896,7 @@ CVE-2026-3518 (OS Command Injection Remote Code 
Execution Vulnerability in API i
 CVE-2026-3517 (OS Command Injection Remote Code Execution Vulnerability in API 
in Pro ...)
        NOT-FOR-US: Progress Software
 CVE-2026-3219 (pip handles concatenated tar and ZIP files as ZIP files 
regardless of  ...)
-       - python-pip <unfixed> (bug #1134492)
+       - python-pip 26.1.1+dfsg-1 (bug #1134492)
        [trixie] - python-pip <no-dsa> (Minor issue)
        [bookworm] - python-pip <no-dsa> (Minor issue)
        [bullseye] - python-pip <postponed> (Minor issue; can be fixed in next 
update)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92d5d400b896263c663bf6699cbcaa6c402c9e67

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92d5d400b896263c663bf6699cbcaa6c402c9e67
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Track fixed version for two python-pip issues fixed via unstable

Reply via email to