Information on source package jinja2

Available versions

ReleaseVersion
bullseye2.11.3-1
bullseye (security)2.11.3-1+deb11u2
bookworm3.1.2-1+deb12u1
trixie3.1.3-1.1
sid3.1.3-2

Open issues

BugbullseyebookwormtrixiesidDescription
CVE-2024-56326vulnerablevulnerablevulnerablevulnerableJinja is an extensible templating engine. Prior to 3.1.5, An oversight ...
CVE-2024-56201vulnerablevulnerablevulnerablevulnerableJinja is an extensible templating engine. In versions on the 3.x branc ...

Open unimportant issues

BugbullseyebookwormtrixiesidDescription
CVE-2019-8341vulnerablevulnerablevulnerablevulnerableAn issue was discovered in Jinja2 2.10. The from_string function is pr ...

Resolved issues

BugDescription
CVE-2024-34064Jinja is an extensible templating engine. The `xmlattr` filter in affe ...
CVE-2024-22195Jinja is an extensible templating engine. Special placeholders in the ...
CVE-2020-28493This affects the package jinja2 from 0.0.0 and before 2.11.3. The ReDo ...
CVE-2019-10906In Pallets Jinja before 2.10.1, str.format_map allows a sandbox escape ...
CVE-2016-10745In Pallets Jinja before 2.8.1, str.format allows a sandbox escape.
CVE-2014-1402The default configuration for bccache.FileSystemBytecodeCache in Jinja ...
CVE-2014-0012FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create tempo ...

Security announcements

DSA / DLADescription
DLA-3988-2jinja2 - regression update
DLA-3988-1jinja2 - security update
DLA-3715-1jinja2 - security update

Search for package or bug name: Reporting problems