Skip to content

Fix CVE: update Jinja2 version #59

New issue
New issue
Open
Open
Fix CVE: update Jinja2 version#59
Labels
bugSomething isn't working
@tisnik

Description

@tisnik
tisnik
opened on May 1, 2019

Additional information about CVE:

CVE-2019-10906
More information
high severity
Vulnerable versions: < 2.10.1
Patched version: 2.10.1

In Pallets Jinja before 2.10.1, str.format_map allows a sandbox escape.

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't working

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions