D1B

**Name of the Vulnerable Software and Affected Versions** pip versions prior to 1.3 **Description** The issue allows local users to overwrite arbitrary files via a symlink attack on a file in the /tmp/pip-build temporary directory. **Recommendations** For versions prior to 1.3, update to version 1.3 or later to resolve the issue.