[SECURITY] Fedora 34 Update: python-pip-21.0.1-3.fc34

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2021-3f378dda90 2021-05-24 01:00:24.873951 --------------------------------------------------------------------------------

Name : python-pip Product : Fedora 34 Version : 21.0.1 Release : 3.fc34 URL : https://pip.pypa.io/ Summary : A tool for installing and managing Python packages Description : pip is a package management system used to install and manage software packages written in Python. Many packages can be found in the Python Package Index (PyPI). pip is a recursive acronym that can stand for either "Pip Installs Packages" or "Pip Installs Python".

-------------------------------------------------------------------------------- Update Information:

- Security fix for CVE-2021-28363. - Security fix for *pip incorrectly handled unicode separators in git references*. -------------------------------------------------------------------------------- ChangeLog:

* Mon May 17 2021 Karolina Surma ksurma@redhat.com - 21.0.1-3 - Backport security fixes from pip 21.1.1 -------------------------------------------------------------------------------- References:

[ 1 ] Bug #1945136 - CVE-2021-28363 python-urllib3: HTTPS proxy host name not validated when using default SSLContext https://bugzilla.redhat.com/show_bug.cgi?id=1945136 [ 2 ] Bug #1962856 - python-pip: pip incorrectly handled unicode separators in git references https://bugzilla.redhat.com/show_bug.cgi?id=1962856 --------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-3f378dda90' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------