Ubuntu
jinja2 package

jinja2 2.10.1-2ubuntu0.3 source package in Ubuntu

Changelog

jinja2 (2.10.1-2ubuntu0.3) focal-security; urgency=medium

  * SECURITY UPDATE: Cross-Site scripting in xmlattr filter
    - debian/patches/CVE-2024-34064.patch: disallow invalid characters
      in keys to xmlattr filter
    - CVE-2024-34064

 -- Nick Galanis <email address hidden>  Tue, 21 May 2024 09:35:36 +0100

Upload details

Uploaded by:
Nick Galanis
Uploaded to:
Focal
Original maintainer:
Ubuntu Developers
Architectures:
all
Section:
python
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Focal updates main python
Focal security main python

Builds

Focal: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
jinja2_2.10.1.orig.tar.gz 254.8 KiB 065c4f02ebe7f7cf559e49ee5a95fb800a9e4528727aec6f24402a5374c65013
jinja2_2.10.1-2ubuntu0.3.debian.tar.xz 10.6 KiB 65958cd2ac1253b74f27cf883ca923417957016e739b1adb3c13eaf7f09cb705
jinja2_2.10.1-2ubuntu0.3.dsc 1.9 KiB 4c76681eac33ecab31ea1ec505836c6b73abde7ccbbfba76802e8bf6ec26436b

View changes file

Binary packages built by this source

python-jinja2: small but fast and easy to use stand-alone template engine

 Jinja2 is a template engine written in pure Python. It provides a Django
 inspired non-XML syntax but supports inline expressions and an optional
 sandboxed environment.
 .
 The key-features are:
  * Configurable syntax. If you are generating LaTeX or other formats with
    Jinja2 you can change the delimiters to something that integrates better
    into the LaTeX markup.
  * Fast. While performance is not the primarily target of Jinja2 it’s
    surprisingly fast. The overhead compared to regular Python code was reduced
    to the very minimum.
  * Easy to debug. Jinja2 integrates directly into the Python traceback system
    which allows you to debug Jinja2 templates with regular Python debugging
    helpers.
  * Secure. It’s possible to evaluate untrusted template code if the optional
    sandbox is enabled. This allows Jinja2 to be used as templating language
    for applications where users may modify the template design.

python-jinja2-doc: documentation for the Jinja2 Python library

 Jinja2 is a small but fast and easy to use stand-alone template engine
 .
 This package contains the documentation for Jinja2 in HTML and
 reStructuredText formats.

python3-jinja2: small but fast and easy to use stand-alone template engine

 Jinja2 is a template engine written in pure Python. It provides a Django
 inspired non-XML syntax but supports inline expressions and an optional
 sandboxed environment.
 .
 The key-features are:
  * Configurable syntax. If you are generating LaTeX or other formats with
    Jinja2 you can change the delimiters to something that integrates better
    into the LaTeX markup.
  * Fast. While performance is not the primarily target of Jinja2 it’s
    surprisingly fast. The overhead compared to regular Python code was reduced
    to the very minimum.
  * Easy to debug. Jinja2 integrates directly into the Python traceback system
    which allows you to debug Jinja2 templates with regular Python debugging
    helpers.
  * Secure. It’s possible to evaluate untrusted template code if the optional
    sandbox is enabled. This allows Jinja2 to be used as templating language
    for applications where users may modify the template design.