CVE-2013-1888

pip before 1.3 allows local users to overwrite arbitrary files via a symlink attack on a file in the /tmp/pip-build temporary directory.

Date published : 2013-08-16

https://github.com/pypa/pip/issues/725

https://github.com/pypa/pip/pull/734/files