VulnerableCode Package Details - pkg:deb/debian/python-pip@20.3.4-2?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/python-pip@20.3.4-2?distro=trixie

purl	pkg:deb/debian/python-pip@20.3.4-2?distro=trixie

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-75s4-h132-6fe1	A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest threat from this vulnerability is to data integrity. This is fixed in python-pip version 21.1.	CVE-2021-3572 GHSA-5xp3-jfq3-5q8x PYSEC-2021-437

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:49:17.826388+00:00	Debian Importer	Fixing	VCID-75s4-h132-6fe1	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:47:50.731257+00:00	Debian Importer	Fixing	VCID-75s4-h132-6fe1	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:50:51.394001+00:00	Debian Importer	Fixing	VCID-75s4-h132-6fe1	https://security-tracker.debian.org/tracker/data/json	38.1.0