[ubuntu/jammy-updates] python-pip 22.0.2+dfsg-1ubuntu0.2 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Tue Feb 28 14:58:53 UTC 2023
python-pip (22.0.2+dfsg-1ubuntu0.2) jammy-security; urgency=medium
* SECURITY UPDATE: ReDOS in wheel.py
- debian/patches/CVE-2022-40898.patch: Fix potential DoS attack
via wheel_file_re by restricting matching dash and dot characters
in src/pip/_internal/models/wheel.py.
- CVE-2022-40898
Date: 2023-02-28 12:30:13.951300+00:00
Changed-By: David Fernandez Gonzalez <david.fernandezgonzalez at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/python-pip/22.0.2+dfsg-1ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list