dev-python/pip – Gentoo Packages

Packages

dev-python/pip: Possible code execution via untrusted packages from external indexes (CVE-2018-20225)
721672 - Assigned to Gentoo Security
<dev-python/pip-23.3: mercurial configuration injection on installation
918427 - Assigned to Gentoo Security

Please file new vulnerability reports on Gentoo Bugzilla and assign them to the Gentoo Security product and Vulnerabilities component.