U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2014-8991

Change History

Reanalysis by NIST 3/15/2021 12:17:41 PM

Action Type Old Value New Value
Added CWE

								
							
							
						
NIST NVD-CWE-noinfo
Removed CWE
NIST CWE-264

								
						
Changed CPE Configuration
OR
     *cpe:2.3:a:python:pip:1.3:*:*:*:*:*:*:*
     *cpe:2.3:a:python:pip:1.3.1:*:*:*:*:*:*:*
     *cpe:2.3:a:python:pip:1.4:*:*:*:*:*:*:*
     *cpe:2.3:a:python:pip:1.4.1:*:*:*:*:*:*:*
     *cpe:2.3:a:python:pip:1.5:*:*:*:*:*:*:*
     *cpe:2.3:a:python:pip:1.5.1:*:*:*:*:*:*:*
     *cpe:2.3:a:python:pip:1.5.2:*:*:*:*:*:*:*
     *cpe:2.3:a:python:pip:1.5.3:*:*:*:*:*:*:*
     *cpe:2.3:a:python:pip:1.5.4:*:*:*:*:*:*:*
     *cpe:2.3:a:python:pip:1.5.5:*:*:*:*:*:*:*
     *cpe:2.3:a:python:pip:1.5.6:*:*:*:*:*:*:*
OR
     *cpe:2.3:a:pypa:pip:*:*:*:*:*:*:*:* versions from (including) 1.3 up to (including) 1.5.6
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:oracle:solaris:11.2:*:*:*:*:*:*:*
Removed CPE Configuration
OR
     *cpe:2.3:o:oracle:solaris:11.2:*:*:*:*:*:*:*

								
						
Changed Reference Type
http://www.openwall.com/lists/oss-security/2014/11/19/17 Third Party Advisory
http://www.openwall.com/lists/oss-security/2014/11/19/17 Mailing List, Third Party Advisory
Changed Reference Type
http://www.openwall.com/lists/oss-security/2014/11/20/6 Third Party Advisory
http://www.openwall.com/lists/oss-security/2014/11/20/6 Mailing List, Third Party Advisory
Changed Reference Type
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725847 Third Party Advisory
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725847 Issue Tracking, Third Party Advisory