Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Mageia 9: MGASA-2025-0094 moderate: python-jinja2 sandbox breakout

mageia
Calendar Grey March 12, 2025
Dist Mageia Esm H88
Recent updates to the python-jinja2 package have addressed a sandbox security vulnerability in Mageia 9, which was reported on March 12, 2025.
Jinja sandbox breakout through attr filter selecting format method

Summary

Jinja sandbox breakout through attr filter selecting format method. (CVE-2025-27516)

References

- https://bugs.mageia.org/show_bug.cgi?id=34081

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MUH4YM6G3UIVK2776BABUYJKVIBPTUT5/

- https://www.cve.org/CVERecord?id=CVE-2025-27516

Topics%20covered

Topics Covered

security advisory security update python-jinja2 Mageia Jinja sandbox format method

Resolution

SRPMS

- 9/core/python-jinja2-3.1.6-1.mga9

Publication date: 12 Mar 2025
URL: https://advisories.mageia.org/MGASA-2025-0094.html
Type: security
CVE: CVE-2025-27516

Topics%20covered

Topics Covered

security advisory security update python-jinja2 Mageia Jinja sandbox format method

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here