Issue 45072: python 3.9.2 contains ensurepip and pip associates CVE-2021-3572 of pip-20.2.3

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

This issue has been migrated to GitHub: https://github.com/python/cpython/issues/89235

classification

Title:	python 3.9.2 contains ensurepip and pip associates CVE-2021-3572 of pip-20.2.3
Type:		Stage:	resolved
Components:		Versions:

process

Created on 2021-09-01 03:23 by xcl123, last changed 2022-04-11 14:59 by admin. This issue is now closed.

Messages (2)
msg400803 - (view)	Author: xcl-1 (xcl123)	Date: 2021-09-01 03:23
python 3.9.2 contains ensurepip and pip associates CVE-2021-3572 of pip-20.2.3
msg400805 - (view)	Author: Zachary Ware (zach.ware) *	Date: 2021-09-01 03:40
As noted in bpo-45068, v3.9.2 is out of date. v3.9.7 includes pip v21.2.3.

History
Date	User	Action	Args
2022-04-11 14:59:49	admin	set	github: 89235
2021-09-01 03:40:43	zach.ware	set	status: open -> closed nosy: + zach.ware messages: + msg400805 resolution: out of date stage: resolved
2021-09-01 03:23:04	xcl123	create