Release | Version |
---|---|
bullseye | 2.11.3-1 |
bookworm | 3.1.2-1 |
trixie | 3.1.3-1 |
sid | 3.1.3-1 |
Bug | bullseye | bookworm | trixie | sid | Description |
---|---|---|---|---|---|
CVE-2024-34064 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | Jinja is an extensible templating engine. The `xmlattr` filter in affe ... |
CVE-2024-22195 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Jinja is an extensible templating engine. Special placeholders in the ... |
Bug | bullseye | bookworm | trixie | sid | Description |
---|---|---|---|---|---|
CVE-2019-8341 | vulnerable | vulnerable | vulnerable | vulnerable | An issue was discovered in Jinja2 2.10. The from_string function is pr ... |
Bug | Description |
---|---|
CVE-2020-28493 | This affects the package jinja2 from 0.0.0 and before 2.11.3. The ReDo ... |
CVE-2019-10906 | In Pallets Jinja before 2.10.1, str.format_map allows a sandbox escape ... |
CVE-2016-10745 | In Pallets Jinja before 2.8.1, str.format allows a sandbox escape. |
CVE-2014-1402 | The default configuration for bccache.FileSystemBytecodeCache in Jinja ... |
CVE-2014-0012 | FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create tempo ... |
DSA / DLA | Description |
---|---|
DLA-3715-1 | jinja2 - security update |