Nov-10-2022, 11:50 PM
Hi Rob,
I need to ask you more question related to CVE-2018-20060.
Under Lib/ensurepip/_bundled/ directory there are pip*.whl and setuptools*.whl files.
Inside that *whl file contains poolmanager.py script that cause security vulnerability.
Do you know if there are the fix to the *whl file that I can downloaded somewhere? So I can backport it to put to our python library inside the jython2.7.2 that we are using.
Thanks again for your help,
Juni.
I need to ask you more question related to CVE-2018-20060.
Under Lib/ensurepip/_bundled/ directory there are pip*.whl and setuptools*.whl files.
Inside that *whl file contains poolmanager.py script that cause security vulnerability.
Do you know if there are the fix to the *whl file that I can downloaded somewhere? So I can backport it to put to our python library inside the jython2.7.2 that we are using.
Thanks again for your help,
Juni.
(Oct-19-2022, 08:02 PM)rob101 Wrote:(Oct-19-2022, 07:13 PM)juniarti Wrote: I tried to post question on jython community but so far nobody answer my question yet.
Just a thought: have you asked for help on Github?
I can see that it's active, so it's more likely than not, that you'll get a reply, given time.
Edit to add: Ah... I see your post there, already.
Wow! 9 days ago, humm... not so active then.