packages/python-jinja2
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix CVE-2025-27516

Browse Source 
Signed-off-by: 毛焱平 <maoyanping@xfusion.com>
(cherry picked from commit dd652e71027432b20aff41c45539f52bacd16260)
This commit is contained in:
毛焱平 2025-04-18 09:10:02 +00:00 committed by openeuler-sync-bot
parent 211bb982ae
commit 976ca4187a
1 changed files with 8 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
python-jinja2.spec
View File

@ -2,7 +2,7 @@
Name: python-jinja2 Name: python-jinja2
Version: 3.1.3 Version: 3.1.3
Release: 4 Release: 5
Summary: A full-featured template engine for Python Summary: A full-featured template engine for Python
License: BSD-3-Clause License: BSD-3-Clause
URL: http://jinja.pocoo.org/ URL: http://jinja.pocoo.org/
@ -13,6 +13,7 @@ BuildArch: noarch
Patch0001: 0001-disallow-invalid-characters-in-keys-to-xmlattr-filte.patch Patch0001: 0001-disallow-invalid-characters-in-keys-to-xmlattr-filte.patch
Patch0002: backport-CVE-2024-56326.patch Patch0002: backport-CVE-2024-56326.patch
Patch0003: backport-CVE-2024-56201.patch Patch0003: backport-CVE-2024-56201.patch
Patch0004: backport-CVE-2025-27516.patch
%description %description
Jinja2 is one of the most used template engines for Python. It is inspired by Django's Jinja2 is one of the most used template engines for Python. It is inspired by Django's
@ -66,6 +67,12 @@ popd
%doc Jinja2-%{version}/examples %doc Jinja2-%{version}/examples
%changelog %changelog
* Fri Apr 18 2025 maoyanping <maoyanping@xfusion.com> - 3.1.3-5
- Type: CVE
- CVE: CVE-2025-27516
- SUG: NA
- DESC: fix CVE-2025-27516
* Thu Dec 26 2024 weihaohao <weihaohao2@huawei.com> - 3.1.3-4 * Thu Dec 26 2024 weihaohao <weihaohao2@huawei.com> - 3.1.3-4
- Type: CVE - Type: CVE
- CVE: CVE-2024-56201 - CVE: CVE-2024-56201