Jinja2 is a template engine written in pure Python. It provides a Django-inspired, non-XML syntax but supports inline expressions and an optional sandboxed environment. It was discovered that Jinja2 did not properly handle bytecode cache files stored in the system"s temporary directory. A local attacker could use this flaw to alter the output of an application using Jinja2 and FileSystemBytecodeCa ...