AVG-904 log

Package python-jinja
Status Not affected
Severity Medium
Type content spoofing
Affected 2.10-2
Fixed Not affected
Current 1:3.1.4-2 [extra-testing]
1:3.1.4-1 [extra]
Ticket None
Created Sun Feb 17 17:33:29 2019
Issue Severity Remote Type Description
CVE-2019-8341 Medium Yes Content spoofing
An issue was discovered in Jinja2 2.10. The from_string function is prone to Server Side Template Injection (SSTI) where it takes the "source" parameter as...
Notes
We don't consider this a security issue