VYPR

rpm package

suse/python-Jinja2&distro=SUSE Linux Enterprise Server 15 SP3-LTSS

pkg:rpm/suse/python-Jinja2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS

Vulnerabilities (2)

  • CVE-2025-27516Mar 5, 2025
    affected < 2.10.1-150000.3.21.1fixed 2.10.1-150000.3.21.1

    Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with the |attr filter allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker nee

  • CVE-2024-56326Dec 23, 2024
    affected < 2.10.1-150000.3.18.1fixed 2.10.1-150000.3.18.1

    Jinja is an extensible templating engine. Prior to 3.1.5, An oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs t