Lucene search
GoogleOSV:ALSA-2021:4161HistoryNov 09, 2021 - 8:26 a.m.
Moderate: python-jinja2 security update
2021-11-0908:26:43
Google
osv.dev
8
The python-jinja2 package contains Jinja2, a template engine written in pure Python. Jinja2 provides a Django inspired non-XML syntax but supports inline expressions and an optional sandboxed environment.
Security Fix(es):
- python-jinja2: ReDoS vulnerability due to the sub-pattern (CVE-2020-28493)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
Related
openvas
openvas
Huawei EulerOS: Security Advisory for python-jinja2 (EulerOS-SA-2021-2609)
2021-10-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:14644-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:0607-1)
2021-06-09 00:00:00
ubuntucve
ubuntucve
CVE-2020-28493
2021-02-01 00:00:00
nessus
nessus
Rocky Linux 8 : python-jinja2 (RLSA-2021:4161)
2023-11-07 00:00:00
EulerOS 2.0 SP9 : python-jinja2 (EulerOS-SA-2021-2538)
2021-09-27 00:00:00
EulerOS 2.0 SP3 : python-jinja2 (EulerOS-SA-2021-2609)
2021-10-25 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: mingw-python-jinja2-2.11.3-1.fc33
2021-03-15 01:19:56
cve
cve
CVE-2020-28493
2021-02-01 20:15:12
alpinelinux
alpinelinux
CVE-2020-28493
2021-02-01 20:15:12
redhatcve
redhatcve
CVE-2020-28493
2021-02-15 12:33:42
nvd
nvd
CVE-2020-28493
2021-02-01 20:15:12
ibm
ibm
Security Bulletin: IBM Security QRadar Network Threat Analytics uses component jinja2 with a denial of service vulnerability (CVE-2020-28493)
2022-09-16 15:41:17
rocky
rocky
python-jinja2 security update
2021-11-09 08:26:43
python27:2.7 security update
2021-11-09 08:24:39
python38:3.8 and python38-devel:3.8 security update
2021-11-09 12:47:54
gitlab
gitlab
Regular Expression Denial of Service
2021-02-01 00:00:00
osv
osv
CVE-2020-28493
2021-02-01 20:15:12
Regular Expression Denial of Service (ReDoS) in Jinja2
2021-03-19 21:28:05
jinja2 vulnerability
2022-10-26 13:36:52
ubuntu
ubuntu
Jinja2 vulnerability
2022-10-26 00:00:00
Jinja2 vulnerabilities
2024-01-25 00:00:00
redhat
redhat
(RHSA-2021:4161) Moderate: python-jinja2 security update
2021-11-09 08:26:43
(RHSA-2021:4151) Moderate: python27:2.7 security update
2021-11-09 08:24:39
(RHSA-2021:3252) Moderate: python27 security update
2021-08-24 07:29:51
gentoo
gentoo
Jinja: Denial of service
2021-07-08 00:00:00
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2021-02-02 01:28:40
archlinux
archlinux
[ASA-202102-19] python-jinja: denial of service
2021-02-07 00:00:00
[ASA-202102-20] python2-jinja: denial of service
2021-02-07 00:00:00
github
github
Regular Expression Denial of Service (ReDoS) in Jinja2
2021-03-19 21:28:05
prion
prion
Design/Logic Flaw
2021-02-01 20:15:00
debiancve
debiancve
CVE-2020-28493
2021-02-01 20:15:12
mageia
mageia
Updated python-jinja2 packages fix a security vulnerability
2021-04-12 22:59:59
cbl_mariner
cbl_mariner
CVE-2020-28493 affecting package python-jinja2 2.10.1-1
2022-08-12 16:45:07
almalinux
almalinux
Moderate: python-jinja2 security update
2021-11-09 08:26:43
Moderate: python27:2.7 security update
2021-11-09 08:24:39
Moderate: python38:3.8 and python38-devel:3.8 security update
2021-11-09 12:47:54
cvelist
cvelist
CVE-2020-28493 Regular Expression Denial of Service (ReDoS)
2021-02-01 00:00:00
oraclelinux
oraclelinux
python27:2.7 security update
2021-11-16 00:00:00
python38:3.8 and python38-devel:3.8 security update
2021-11-16 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00