jinja2 3.1.2-1ubuntu1.1 source package in Ubuntu

Changelog

jinja2 (3.1.2-1ubuntu1.1) noble-security; urgency=medium

  * SECURITY UPDATE: Cross-Site scripting in xmlattr filter
    - debian/patches/CVE-2024-34064.patch: disallow invalid characters
      in keys to xmlattr filter
    - CVE-2024-34064

 -- Nick Galanis <email address hidden>  Tue, 21 May 2024 15:32:08 +0100

Upload details

Uploaded by:
Nick Galanis
Uploaded to:
Noble
Original maintainer:
Ubuntu Developers
Architectures:
all
Section:
python
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Noble updates main python
Noble security main python

Builds

Noble: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
jinja2_3.1.2.orig.tar.gz 262.0 KiB 31351a702a408a9e7595a8fc6150fc3f43bb6bf7e319770cbc0db9df9437e852
jinja2_3.1.2-1ubuntu1.1.debian.tar.xz 12.4 KiB a2e4f091d111b136e49bcbfe5b34ae678857745b6338bdb9e8520fc99c44c803
jinja2_3.1.2-1ubuntu1.1.dsc 2.0 KiB b8216331e5f06b62b21fa3433eeaef873510471b199d18dadc103d7b47b746f0

View changes file

Binary packages built by this source

python-jinja2-doc: documentation for the Jinja2 Python library

 Jinja2 is a small but fast and easy to use stand-alone template engine
 .
 This package contains the documentation for Jinja2 in HTML and
 reStructuredText formats.

python3-jinja2: small but fast and easy to use stand-alone template engine

 Jinja2 is a template engine written in pure Python. It provides a Django
 inspired non-XML syntax but supports inline expressions and an optional
 sandboxed environment.
 .
 The key-features are:
  * Configurable syntax. If you are generating LaTeX or other formats with
    Jinja2 you can change the delimiters to something that integrates better
    into the LaTeX markup.
  * Fast. While performance is not the primarily target of Jinja2 it’s
    surprisingly fast. The overhead compared to regular Python code was reduced
    to the very minimum.
  * Easy to debug. Jinja2 integrates directly into the Python traceback system
    which allows you to debug Jinja2 templates with regular Python debugging
    helpers.
  * Secure. It’s possible to evaluate untrusted template code if the optional
    sandbox is enabled. This allows Jinja2 to be used as templating language
    for applications where users may modify the template design.