Debian Package Tracker

general

source: python-pip (main)
version: 20.1.1-2
maintainer: Debian Python Modules Team (archive) (DMD)
uploaders: Barry Warsaw [DMD] – Carl Chenet [DMD] – Scott Kitterman [DMD]
arch: all
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.5.6-5
oldstable: 9.0.1-2+deb9u1
old-sec: 9.0.1-2+deb9u2
stable: 18.1-5
testing: 20.1.1-2
unstable: 20.1.1-2

versioned links

1.5.6-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
9.0.1-2+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
9.0.1-2+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
18.1-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
20.1.1-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

python-pip-whl
python3-pip (1 bugs: 0, 1, 0, 0)

action needed

A new upstream version is available: 20.3.3 high

A new upstream version 20.3.3 is available, you should consider packaging it.

Created: 2020-06-29 Last update: 2021-01-24 13:01

lintian reports 2 errors high

Lintian reports 2 errors about this package. You should make the package lintian clean getting rid of them.

Created: 2020-10-22 Last update: 2020-10-22 04:34

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 20.2-1, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit dabfad16065089a006e846a215bccabfb80b5671
Author: Ondřej Nový <onovy@debian.org>
Date:   Thu Sep 24 08:52:42 2020 +0200

    d/control: Update Vcs-* fields with new Debian Python Team Salsa layout

commit 8918ebd30bdce35e10adb62ddf13e85ee10bfd8e
Author: Ondřej Nový <onovy@debian.org>
Date:   Thu Sep 24 08:52:42 2020 +0200

    d/control: Update Maintainer field with new Debian Python Team contact address

commit 89253e2ab4118a0771848805c46bd7015b58f5dd
Author: Scott Kitterman <scott@kitterman.com>
Date:   Mon Aug 3 08:55:52 2020 -0400

    New upstream release
    
    * New upstream release
      - Refresh patches

commit 27fcd14ea26f7de073ab7ed2488d9016e56814e7
Merge: e7dda3a aaced96
Author: Scott Kitterman <scott@kitterman.com>
Date:   Mon Aug 3 08:47:33 2020 -0400

    Update upstream source from tag 'upstream/20.2'
    
    Update to upstream version '20.2'
    with Debian dir 6f304ca476d601113a13f42e14b99decd4bc92b2

commit aaced96489e46239bf18f8be72022993fe491d46
Author: Scott Kitterman <scott@kitterman.com>
Date:   Mon Aug 3 08:47:27 2020 -0400

    New upstream version 20.2

commit e7dda3a7ef58d039176c9e10ebe2ab3726ff5d39
Author: Scott Kitterman <scott@kitterman.com>
Date:   Thu Jun 11 09:28:16 2020 -0400

    Include vendor.txt in binary to support debug command (See #961540)

https://salsa.debian.org/api/v4/projects/python-team%2Fmodules%2Fpython-pip API request failed: 404 Not Found at /srv/qa.debian.org/data/vcswatch/vcswatch line 380.

Created: 2020-06-11 Last update: 2021-01-22 06:34

1 ignored security issue in buster low

There is 1 open security issue in buster.

1 issue skipped by the security teams:

CVE-2019-20916: The pip package before 19.2 for Python allows Directory Traversal when a URL is given in an install command, because a Content-Disposition header can have ../ in a filename, as demonstrated by overwriting the /root/.ssh/authorized_keys file. This occurs in _download_http_url in _internal/download.py.

Please fix it.

Created: 2020-09-05 Last update: 2020-09-13 00:30

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.1 instead of 4.5.0).

Created: 2020-11-17 Last update: 2020-11-17 05:41

news

[rss feed]

[2020-09-12] Accepted python-pip 9.0.1-2+deb9u2 (source all) into oldstable (Chris Lamb)
[2020-05-29] python-pip 20.1.1-2 MIGRATED to testing (Debian testing watch)
[2020-05-27] Accepted python-pip 20.1.1-2 (source) into unstable (Scott Kitterman) (signed by: Donald Scott Kitterman)
[2020-05-23] python-pip 20.1.1-1 MIGRATED to testing (Debian testing watch)
[2020-05-21] Accepted python-pip 20.1.1-1 (source) into unstable (Scott Kitterman) (signed by: Donald Scott Kitterman)
[2020-05-11] python-pip 20.1-2 MIGRATED to testing (Debian testing watch)
[2020-05-09] Accepted python-pip 20.1-2 (source) into unstable (Stefano Rivera)
[2020-05-08] python-pip 20.1-1 MIGRATED to testing (Debian testing watch)
[2020-05-03] Accepted python-pip 20.1-1 (source) into unstable (Scott Kitterman) (signed by: Donald Scott Kitterman)
[2020-05-01] python-pip 20.0.2-5 MIGRATED to testing (Debian testing watch)
[2020-04-20] Accepted python-pip 20.0.2-5 (source) into unstable (Stefano Rivera)
[2020-04-08] python-pip 20.0.2-4 MIGRATED to testing (Debian testing watch)
[2020-04-03] Accepted python-pip 20.0.2-4 (source) into unstable (Scott Kitterman) (signed by: Donald Scott Kitterman)
[2020-04-03] python-pip 20.0.2-3 MIGRATED to testing (Debian testing watch)
[2020-03-31] Accepted python-pip 20.0.2-3 (source) into unstable (Scott Kitterman) (signed by: Donald Scott Kitterman)
[2020-03-26] python-pip 20.0.2-2 MIGRATED to testing (Debian testing watch)
[2020-03-17] Accepted python-pip 20.0.2-2 (source) into unstable (Scott Kitterman) (signed by: Donald Scott Kitterman)
[2020-03-15] Accepted python-pip 20.0.2-1 (source) into unstable (Scott Kitterman) (signed by: Donald Scott Kitterman)
[2019-04-14] Accepted python-pip 9.0.1-2+deb9u1 (source all) into proposed-updates->stable-new, proposed-updates (Thomas Goirand)
[2019-04-03] python-pip 18.1-5 MIGRATED to testing (Debian testing watch)
[2019-03-30] Accepted python-pip 18.1-5 (source all) into unstable (Thomas Goirand)
[2019-01-06] python-pip 18.1-4 MIGRATED to testing (Debian testing watch)
[2019-01-03] Accepted python-pip 18.1-4 (source) into unstable (Andrej Shadura)
[2018-12-25] python-pip 18.1-3 MIGRATED to testing (Debian testing watch)
[2018-12-19] Accepted python-pip 18.1-3 (source) into unstable (Andrej Shadura)
[2018-12-03] Accepted python-pip 18.1-2 (source) into unstable (Andrej Shadura)
[2018-11-27] Accepted python-pip 18.1-1 (source) into experimental (Andrej Shadura)
[2018-05-04] python-pip 9.0.1-2.3 MIGRATED to testing (Debian testing watch)
[2018-05-02] Accepted python-pip 9.0.1-2.3 (source) into unstable (Matthias Klose)
[2018-04-28] Accepted python-pip 9.0.1-2.2 (source) into unstable (Matthias Klose)

bugs [bug history graph]

all: 3
RC: 0
I&N: 2
M&W: 1
F&P: 0
patch: 0

links

homepage
lintian (2, 0)
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 20.1.1-2
17 bugs