UbuntuUpdates.org

Package "jinja2"

Name: jinja2

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • small but fast and easy to use stand-alone template engine
  • documentation for the Jinja2 Python library
  • small but fast and easy to use stand-alone template engine

Latest version: 2.10-1ubuntu0.18.04.1
Release: bionic (18.04)
Level: updates
Repository: main

Links



Other versions of "jinja2" in Bionic

Repository Area Version
base main 2.10-1
security main 2.10-1ubuntu0.18.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.10-1ubuntu0.18.04.1 2019-06-06 13:08:53 UTC

  jinja2 (2.10-1ubuntu0.18.04.1) bionic-security; urgency=medium

  * SECURITY UPDATE: sandbox escape via str.format_map
    - debian/patches/CVE-2019-10906.patch: properly sandbox format_map in
      jinja2/sandbox.py, tests/test_security.py.
    - CVE-2019-10906

 -- Marc Deslauriers <email address hidden> Tue, 14 May 2019 13:28:19 -0400

CVE-2019-10906 In Pallets Jinja before 2.10.1, str.format_map allows a sandbox escape.



About   -   Send Feedback to @ubuntu_updates