Lucene search
K

18 matches found

Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.19 views

Oracle Solaris Third-Party Patch Update : jinja2 (multiple_vulnerabilities_in_jinja2)

The remote Solaris system is missing necessary patches to address security updates : - FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create temporary directories, which allows local users to gain privileges by pre-creating a temporary directory with a user's uid. NOTE: this...

4.4CVSS8.1AI score0.0043EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2014/10/12 12:0 a.m.24 views

Amazon Linux AMI : python-jinja2 (ALAS-2014-371)

The default configuration for bccache.FileSystemBytecodeCache in Jinja2 before 2.7.2 does not properly create temporary files, which allows local users to gain privileges via a crafted .cache file with a name starting with jinja2 in /tmp. C Tenable Network Security, Inc. The descriptive text and...

4.4CVSS8.1AI score0.00373EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/08/30 12:0 a.m.24 views

GLSA-201408-13 : Jinja2: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201408-13 Jinja2: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Jinja2. Please review the CVE identifiers referenced below for details. Impact : A local attacker could gain escalated privileges via a...

4.4CVSS8.2AI score0.0043EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2014/06/23 12:0 a.m.18 views

Fedora Update for python-jinja2 FEDORA-2014-7399

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS6.4AI score0.00373EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2014/06/23 12:0 a.m.16 views

Fedora Update for python-jinja2 FEDORA-2014-7166

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS6.4AI score0.00373EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/06/23 12:0 a.m.28 views

Fedora 19 : python-jinja2-2.6-7.fc19 (2014-7399)

Add patch to fix CVE-2014-1402. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

4.4CVSS8.1AI score0.00373EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2014/06/17 12:0 a.m.19 views

CentOS Update for python-jinja2 CESA-2014:0747 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS8AI score0.00373EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/06/12 12:0 a.m.26 views

CentOS 6 : python-jinja2 (CESA-2014:0747)

Updated python-jinja2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

4.4CVSS8.4AI score0.00373EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/06/12 12:0 a.m.23 views

Oracle Linux 6 : python-jinja2 (ELSA-2014-0747)

The remote Oracle Linux 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2014-0747 advisory. 2.2.1-2 - Fix CVE-2014-1402 Resolves: rhbz1102889 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

4.4CVSS8.2AI score0.00373EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/06/12 12:0 a.m.32 views

RHEL 6 : python-jinja2 (RHSA-2014:0747)

Updated python-jinja2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

4.4CVSS8.4AI score0.00373EPSS
Exploits0References3
Cent OS
Cent OS
added 2014/06/11 6:1 p.m.65 views

python security update

CentOS Errata and Security Advisory CESA-2014:0747 Updated python-jinja2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS...

4.4CVSS7.6AI score0.00373EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2014/06/11 5:13 p.m.35 views

Moderate: Red Hat Security Advisory: python-jinja2 security update

Updated python-jinja2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

4.4CVSS7.6AI score0.00373EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2014/06/11 12:0 a.m.24 views

python-jinja2 security update

2.2.1-2 - Fix CVE-2014-1402 Resolves: rhbz1102889...

4.4CVSS1.4AI score0.00373EPSS
Exploits0
NVD
NVD
added 2014/05/19 2:55 p.m.16 views

CVE-2014-1402

The default configuration for bccache.FileSystemBytecodeCache in Jinja2 before 2.7.2 does not properly create temporary files, which allows local users to gain privileges via a crafted .cache file with a name starting with jinja2 in /tmp...

4.4CVSS6.1AI score0.00373EPSS
Exploits0References17
CVE
CVE
added 2014/05/19 2:0 p.m.103 views

CVE-2014-1402

CVE-2014-1402 affects the Jinja2 template engine. The vulnerability is in the default configuration of bccache.FileSystemBytecodeCache, where Jinja2 before 2.7.2 does not properly create temporary files/directories, allowing a local attacker to gain privileges via a crafted .cache file named star...

4.4CVSS6.1AI score0.00373EPSS
Exploits0References17Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/05/19 12:0 a.m.20 views

Mandriva Linux Security Advisory : python-jinja2 (MDVSA-2014:096)

Updated python-jinja2 packages fix security vulnerability : Jinja2, a template engine written in pure python, was found to use /tmp as a default directory for jinja2.bccache.FileSystemBytecodeCache, which is insecure because the /tmp directory is world-writable and the filenames used like...

4.4CVSS8.6AI score0.00373EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2014/05/19 12:0 a.m.32 views

CVE-2014-1402

The default configuration for bccache.FileSystemBytecodeCache in Jinja2 before 2.7.2 does not properly create temporary files, which allows local users to gain privileges via a crafted .cache file with a name starting with jinja2 in /tmp...

4.4CVSS7.2AI score0.00373EPSS
Exploits0References2
Mageia
Mageia
added 2014/01/24 9:4 p.m.35 views

Updated python-jinja2 package fixes two security vulnerabilities

Updated python-jinja2 packages fix security vulnerability: Jinja2, a template engine written in pure python, was found to use /tmp as a default directory for jinja2.bccache.FileSystemBytecodeCache, which is insecure because the /tmp directory is world-writable and the filenames used like...

4.4CVSS7.2AI score0.00373EPSS
Exploits0References5
Rows per page
Query Builder