Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Require IPython >= 7.31.1 due to CVE-2022-21699 ? #17232

Closed
rhkarls opened this issue Jan 22, 2022 · 2 comments
Closed

Require IPython >= 7.31.1 due to CVE-2022-21699 ? #17232

rhkarls opened this issue Jan 22, 2022 · 2 comments
Assignees
@ccordoba12
Labels
component:IPython Console type:Task
Milestone
v5.3.0

Comments

@rhkarls
Copy link
Contributor

rhkarls commented Jan 22, 2022

In light of CVE-2022-21699 and its severity, should Spyder require patched IPython versions? Considering that dropping 3.6 is planned (#16971) and IPython >= 8 is not currently supported this should mean the requirement of ipython >=7.31.1,<8.0.0
@ccordoba12
Copy link
Member

Hey @rhkarls, thanks a lot for the suggestion! We'll request that IPython version in our next version (5.3.0), to be released in a couple of months.

@ccordoba12 ccordoba12 self-assigned this Jan 24, 2022
@ccordoba12 ccordoba12 added this to the v5.3.0 milestone Jan 24, 2022
@rhkarls
Copy link
Contributor Author

rhkarls commented Jan 24, 2022

Thanks for the follow up @ccordoba12 .It appears that at least 5.2.2 Windows installer is already packaged with 7.31.1, so that's great!

@ccordoba12 ccordoba12 mentioned this issue Feb 2, 2022
Closed
3 tasks
@ccordoba12 ccordoba12 mentioned this issue Feb 25, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ccordoba12 ccordoba12

Labels
component:IPython Console type:Task
Projects
None yet
Milestone
v5.3.0
Development

No branches or pull requests
2 participants
@ccordoba12 @rhkarls