[ubuntu/focal-security] jinja2 2.10.1-2ubuntu0.4 (Accepted)

[Evan Caville]

jinja2 (2.10.1-2ubuntu0.4) focal-security; urgency=medium

  * SECURITY UPDATE: arbitrary code execution issue in jinja compiler
    - debian/patches/CVE-2024-56201.patch: f-string syntax handling in code
      generation improved in jinja2/compiler.py.
    - debian/patches/CVE-2024-56326.patch: oversight on calls to str.format
      adjusted in jinja2/sandbox.py.
    - CVE-2024-56201
    - CVE-2024-56326

Date: 2025-01-21 00:52:16.567547+00:00
Changed-By: Evan Caville <evan.caville at canonical.com>
https://launchpad.net/ubuntu/+source/jinja2/2.10.1-2ubuntu0.4
-------------- next part --------------
Sorry, changesfile not available.