rpm package
suse/python312-pip&distro=SUSE Linux Enterprise Module for Python 3 15 SP6
pkg:rpm/suse/python312-pip&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-5752 | — | < 23.2.1-150600.3.3.1 | 23.2.1-150600.3.3.1 | Oct 24, 2023 | When installing a package from a Mercurial VCS URL (ie "pip install hg+...") with pip prior to v23.3, the specified Mercurial revision could be used to inject arbitrary configuration options to the "hg clone" call (ie "--config"). Controlling the Mercurial configuration can m |
- CVE-2023-5752Oct 24, 2023affected < 23.2.1-150600.3.3.1fixed 23.2.1-150600.3.3.1
When installing a package from a Mercurial VCS URL (ie "pip install hg+...") with pip prior to v23.3, the specified Mercurial revision could be used to inject arbitrary configuration options to the "hg clone" call (ie "--config"). Controlling the Mercurial configuration can m