Request 851364: Submit python-Jinja2 - openSUSE Build Service

This request supersedes: request 850784 (Show diff)

Overview

Request 851364 accepted

- add 0001-sandbox-str.format_map.patch (bsc#1132323, CVE-2019-10906, bsc#1125815, CVE-2019-8341)
* "SandboxedEnvironment" securely handles "str.format_map" in order
to prevent code execution through untrusted format strings. The
sandbox already handled "str.format".
- add 0001-SECURITY-support-sandboxing-in-format-expressions.patch (bsc#1132174, CVE-2016-10745)

Created by jgrassler almost 4 years ago
In state accepted
Supersedes 850784

Submit python-Jinja2

Comments for request 851364 0

Login required, please login in order to comment

Request History

jgrassler created request almost 4 years ago

- add 0001-sandbox-str.format_map.patch (bsc#1132323, CVE-2019-10906, bsc#1125815, CVE-2019-8341)
* "SandboxedEnvironment" securely handles "str.format_map" in order
to prevent code execution through untrusted format strings. The
sandbox already handled "str.format".
- add 0001-SECURITY-support-sandboxing-in-format-expressions.patch (bsc#1132174, CVE-2016-10745)

jzerebecki accepted request almost 4 years ago

openSUSE Build Service is sponsored by