RHSA-2019:1329-01 -- Redhat rh-python36-python-jinja2ID: oval:org.secpod.oval:def:505018 | Date: (C)2021-01-29 (M)2024-04-17 |
Class: PATCH | Family: unix |
The python-jinja2 package contains Jinja2, a template engine written in pure Python. Jinja2 provides a Django inspired non-XML syntax but supports inline expressions and an optional sandboxed environment. Security Fix: * python-jinja2: str.format_map allows sandbox escape For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.
Platform: |
Red Hat Enterprise Linux 7 |
Red Hat Enterprise Linux 6 |
Product: |
rh-python36-python-jinja2 |