Package "jinja2"

Links

Other versions of "jinja2" in Mantic

Repository	Area	Version
base	universe	3.1.2-1
base	main	3.1.2-1
security	main	3.1.2-1ubuntu0.23.10.2
security	universe	3.1.2-1ubuntu0.23.10.2
updates	main	3.1.2-1ubuntu0.23.10.2

Packages in group

Deleted packages are displayed in grey.

• python-jinja2-doc

Changelog

Version: 3.1.2-1ubuntu0.23.10.2	2024-05-28 14:07:19 UTC
jinja2 (3.1.2-1ubuntu0.23.10.2) mantic-security; urgency=medium   * SECURITY UPDATE: Cross-Site scripting in xmlattr filter     - debian/patches/CVE-2024-34064.patch: disallow invalid characters       in keys to xmlattr filter     - CVE-2024-34064  -- Nick Galanis <email address hidden> Tue, 21 May 2024 15:23:52 +0100
Source diff to previous version
CVE-2024-34064 Jinja is an extensible templating engine. The `xmlattr` filter in affected versions of Jinja accepts keys containing non-attribute characters. XML/HT

Version: 3.1.2-1ubuntu0.23.10.1	2024-01-25 19:12:47 UTC
jinja2 (3.1.2-1ubuntu0.23.10.1) mantic-security; urgency=medium   * SECURITY UPDATE: Cross-Site scripting     - debian/patches/CVE-2024-22195.patch: disallow keys with spaces       in src/jinja2/filters.py, tests/test_filters.py.     - CVE-2024-22195  -- Leonidas Da Silva Barbosa <email address hidden> Tue, 23 Jan 2024 10:36:41 -0300
CVE-2024-22195 Jinja is an extensible templating engine. Special placeholders in the template allow writing code similar to Python syntax. It is possible to inject

---

Share this page

Bookmarks

skype 4.3.0.37
virtualbox-4.3 4.3.40-110317
steam 1:1.0.0.79
google-chrome-beta 126.0.6478.26

Latest updates

  Packages changelogs
  Bugs & CVEs

proposed

linux-signed-intel-opt (mantic)
linux-meta-intel-opt (mantic)
linux-restricted-signatures-hwe-6.8 (jammy)
linux-restricted-modules-hwe-6.8 (jammy)
linux-signed-hwe-6.8 (jammy)
linux-hwe-6.8 (jammy)
linux-restricted-modules-hwe-6.8 (jammy)
linux-signed-azure (jammy)
linux-meta-hwe-6.8 (jammy)
linux-meta-azure (jammy)
linux-restricted-signatures-azure (jammy)
linux-restricted-modules-azure (jammy)
easyeffects (noble)

updates

vim (mantic)
vim (mantic)
vim (jammy)
vim (jammy)
vim (focal)
vim (focal)
vim (noble)
vim (noble)
timeshift (jammy)
software-properties (xenial)
software-properties (xenial)
far2l (noble)
ffmpeg (mantic)
postgresql-16 (noble)
glibc (noble)
python-pymysql (noble)
postgresql-16 (noble)

See all

PPA updates

  PPAs

nginx-nr-agent (bionic)
handbrake (trusty)
firefox-trunk (noble)
linux-signed-oem-6.10 (noble)
linux-meta-oem-6.10 (noble)
linux-generate-oem-6.10 (noble)
linux-oem-6.10 (noble)
google-chrome-unstable (stable)
firefox (noble)
thunderbird (xenial)
thunderbird (noble)
thunderbird (mantic)
thunderbird (jammy)
thunderbird (focal)
brave-browser (stable)
thunderbird (bionic)
vivaldi-snapshot (stable)
code-insiders (stable)
vivaldi-stable (stable)
signal-desktop-beta (xenial)
google-chrome-stable (stable)
linux-signed-azure (jammy)
linux-restricted-modules-azure (jammy)
linux-meta-azure (jammy)
linux-generate-azure (jammy)
puppet8-release (jammy)
puppet7-release (jammy)
puppet7-release (focal)
firefox (jammy)
firefox (vera)

See all