SUSE CVE-2014-0012

🗓️ 15 Feb 2023 05:33:03Reported by Suse CVEType

susecve

susecve🔗 www.suse.com👁 1 Views

Local users can gain privileges via a faulty temp directory in Jinja2 FileSystemBytecodeCache.

Reporter	Title	Published	Views	Family All 35
CVE	CVE-2014-0012	19 May 201414:00	–	cve
Cvelist	CVE-2014-0012	19 May 201414:00	–	cvelist
Debian CVE	CVE-2014-0012	19 May 201414:00	–	debiancve
EUVD	EUVD-2014-0024	7 Oct 202500:30	–	euvd
Tenable Nessus	GLSA-201408-13 : Jinja2: Multiple vulnerabilities	30 Aug 201400:00	–	nessus
Tenable Nessus	openSUSE Security Update : python-Jinja2 (openSUSE-2016-1159)	12 Oct 201600:00	–	nessus
Tenable Nessus	Oracle Solaris Third-Party Patch Update : jinja2 (multiple_vulnerabilities_in_jinja2)	19 Jan 201500:00	–	nessus
Tenable Nessus	Ubuntu 12.04 LTS : jinja2 vulnerabilities (USN-2301-1)	25 Jul 201400:00	–	nessus
Github Security Blog	Insecure Temporary File in Jinja2	17 May 202204:01	–	github
Gentoo Linux	Jinja2: Multiple vulnerabilities	29 Aug 201400:00	–	gentoo

OS	OS Version	Architecture	Package	Package Version	Filename
OpenSUSE Tumbleweed	–	any	python-jinja2	2.8-1.4	python-Jinja2-2.8-1.4.noarch.rpm
SUSE Linux Enterprise Server	12	any	python-jinja2	2.8-2.1	python-Jinja2-2.8-2.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	python-jinja2-emacs	2.8-1.4	python-Jinja2-emacs-2.8-1.4.noarch.rpm
SUSE Linux Enterprise Server	12	any	python-jinja2-emacs	2.8-2.1	python-Jinja2-emacs-2.8-2.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	python-jinja2-vim	2.8-1.4	python-Jinja2-vim-2.8-1.4.noarch.rpm
SUSE Linux Enterprise Server	12	any	python-jinja2-vim	2.8-2.1	python-Jinja2-vim-2.8-2.1.noarch.rpm
SUSE Linux Enterprise Desktop	15	any	python2-jinja2	2.10-1.21	python2-Jinja2-2.10-1.21.noarch.rpm
SUSE Linux Enterprise Server	15	any	python2-jinja2	2.10-1.21	python2-Jinja2-2.10-1.21.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	15	any	python2-jinja2	2.10-1.21	python2-Jinja2-2.10-1.21.noarch.rpm
SUSE Linux Enterprise Desktop	15	any	python3-jinja2	2.10-1.21	python3-Jinja2-2.10-1.21.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2014-0012
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/858239
lists	www.lists.suse.com/pipermail/sle-updates/2022-February/021718.html
lists	www.lists.suse.com/pipermail/sle-updates/2022-February/021715.html
lists	www.lists.suse.com/pipermail/sle-updates/2022-February/021720.html
lists	www.lists.suse.com/pipermail/sle-updates/2022-February/021717.html
lists	www.lists.suse.com/pipermail/sle-updates/2022-February/021719.html
lists	www.lists.suse.com/pipermail/sle-updates/2022-February/021714.html
lists	www.lists.suse.com/pipermail/sle-updates/2022-February/021716.html

01 Jan 2026 02:32Current

7High risk

Vulners AI Score7

CVSS 24.4

EPSS0.00101

suse cve-2014-0012 jinja2 file system cache