Amazon Linux 2 : python-jinja2 (ALAS-2019-1223)

In Pallets Jinja, str.format allows a sandbox escape. CVE-2016-10745 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux 2 Security Advisory ALAS-2019-1223. include'compat.inc'; if description scriptid126831; scriptversion"1.3";...

EulerOS 2.0 SP2 : python-jinja2 (EulerOS-SA-2019-1722)

According to the version of the python-jinja2 package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - python-jinja2: Sandbox escape due to information disclosure via str.format CVE-2016-10745 Note that Tenable Network Security has extracted th...

openSUSE Security Update : python-Jinja2 (openSUSE-2019-1614)

This update for python-Jinja2 fixes the following issues : Security issues fixed : - CVE-2016-10745: Fixed a sandbox escape caused by an information disclosure via str.format bsc1132174. - CVE-2019-10906: Fixed a sandbox escape due to information disclosure via str.format bsc1132323. -...

Security update for python-Jinja2 (important)

openSUSE Security Update: Security update for python-Jinja2 Announcement ID: openSUSE-SU-2019:1614-1 Rating: important References: 1125815 1132174 1132323 Cross-References: CVE-2016-10745 CVE-2019-10906 CVE-2019-8341 Affected Products: openSUSE Leap 42.3 An update that fixes three vulnerabilities...

SUSE-SU-2019:1554-1 Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: Security issues fixed: - CVE-2016-10745: Fixed a sandbox escape caused by an information disclosure via str.format bsc1132174. - CVE-2019-10906: Fixed a sandbox escape due to information disclosure via str.format bsc1132323. - CVE-2019-834...

Amazon Linux AMI : python-jinja2 (ALAS-2019-1223)

In Pallets Jinja, str.format allows a sandbox escape. CVE-2016-10745 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux AMI Security Advisory ALAS-2019-1223. include'compat.inc'; if description scriptid125902; scriptversion"1.3...

Important: python-jinja2

Issue Overview: In Pallets Jinja, str.format allows a sandbox escape. CVE-2016-10745 Affected Packages: python-jinja2 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue Correction: Ru...

Important: python-jinja2

Issue Overview: In Pallets Jinja, str.format allows a sandbox escape. CVE-2016-10745 Affected Packages: python-jinja2 Issue Correction: Run yum update python-jinja2 or yum update --advisory ALAS-2019-1223 to update your system. New Packages: noarch: python26-jinja2-2.7.2-3.16.amzn1.noarch ...

Important: Red Hat Security Advisory: rh-python36-python-jinja2 security update

An update for rh-python36-python-jinja2 is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

EulerOS Virtualization for ARM 64 3.0.2.0 : python-jinja2 (EulerOS-SA-2019-1619)

According to the version of the python-jinja2 package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - In Pallets Jinja before 2.8.1, str.format allows a sandbox escape.CVE-2016-10745 Note that Tenable Network Security...

EulerOS 2.0 SP5 : python-jinja2 (EulerOS-SA-2019-1595)

According to the version of the python-jinja2 package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - python-jinja2: Sandbox escape due to information disclosure via str.format CVE-2016-10745 Note that Tenable Network Security has extracted th...

SUSE-SU-2019:1323-1 Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: Security issue fixed: - CVE-2016-10745: Fixed a sandbox escape caused by an information disclosure via str.format...

Important: Red Hat Security Advisory: python27-python and python27-python-jinja2 security and bug fix update

An update for python27-python and python27-python-jinja2 is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

MGASA-2019-0177 Updated python-jinja2 packages fix security vulnerability

Sandbox escape due to information disclosure via str.format CVE-2016-10745. str.formatmap allows sandbox escape CVE-2019-10906...

Updated python-jinja2 packages fix security vulnerability

Sandbox escape due to information disclosure via str.format CVE-2016-10745. str.formatmap allows sandbox escape CVE-2019-10906...

Oracle Linux 7 : python-jinja2 (ELSA-2019-1022)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2019-1022 advisory. 2.7.2-3 - Fix for CVE-2016-10745 Resolves: rhbz1701308 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

openSUSE: Security Advisory for python-Jinja2 (openSUSE-SU-2019:1395-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CentOS Update for python-jinja2 CESA-2019:1022 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : python-Jinja2 (openSUSE-2019-1395)

This update for python-Jinja2 to version 2.10.1 fixes the following issues : Security issues fixed : - CVE-2019-8341: Fixed a command injection in fromstring bsc1125815. - CVE-2019-10906: Fixed a sandbox escape due to information disclosure via str.format bsc1132323. This update was imported from...

RHEL 8 : python-jinja2 (RHSA-2019:1152)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2019:1152 advisory. The python-jinja2 package contains Jinja2, a template engine written in pure Python. Jinja2 provides a Django inspired non-XML syntax but supports...