Lucene search
GoogleOSV:GHSA-53MR-44PP-CRF4HistoryMay 13, 2022 - 1:11 a.m.
pip lack of randomness in build directory
2022-05-1301:11:25
Google
osv.dev
6
pip
denial of service
randomness
build directory
software
pip 1.3 through 1.5.6 allows local users to cause a denial of service (prevention of package installation) by creating a /tmp/pip-build-* file for another user.
References
www.openwall.com/lists/oss-security/2014/11/19/17
www.openwall.com/lists/oss-security/2014/11/20/6
www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
www.securityfocus.com/bid/71209
bugs.debian.org/cgi-bin/bugreport.cgi?bug=725847
github.com/pypa/pip
github.com/pypa/pip/commit/043fe9f5700315d97f83609c1f59deece8f1b901
github.com/pypa/pip/pull/2122
nvd.nist.gov/vuln/detail/CVE-2014-8991
Related
debiancve
debiancve
CVE-2014-8991
2014-11-24 15:59:15
mageia
mageia
Updated python-pip packages fix CVE-2014-8991
2015-01-15 00:55:47
ubuntucve
ubuntucve
CVE-2014-8991
2014-11-24 00:00:00
cvelist
cvelist
CVE-2014-8991
2014-11-24 15:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0023)
2022-01-28 00:00:00
nvd
nvd
CVE-2014-8991
2014-11-24 15:59:15
cve
cve
CVE-2014-8991
2014-11-24 15:59:15
osv
osv
PYSEC-2014-11
2014-11-24 15:59:00
prion
prion
Code injection
2014-11-24 15:59:00
github
github
pip lack of randomness in build directory
2022-05-13 01:11:25
ibm
ibm