fix CVE-2025-27516
Signed-off-by: 毛焱平 <maoyanping@xfusion.com> (cherry picked from commit dd652e71027432b20aff41c45539f52bacd16260)
This commit is contained in:
毛焱平
openeuler-sync-bot
parent
211bb982ae
commit
976ca4187a
@ -2,7 +2,7 @@
|
||||
|
||||
Name: python-jinja2
|
||||
Version: 3.1.3
|
||||
Release: 4
|
||||
Release: 5
|
||||
Summary: A full-featured template engine for Python
|
||||
License: BSD-3-Clause
|
||||
URL: http://jinja.pocoo.org/
|
||||
@ -13,6 +13,7 @@ BuildArch: noarch
|
||||
Patch0001: 0001-disallow-invalid-characters-in-keys-to-xmlattr-filte.patch
|
||||
Patch0002: backport-CVE-2024-56326.patch
|
||||
Patch0003: backport-CVE-2024-56201.patch
|
||||
Patch0004: backport-CVE-2025-27516.patch
|
||||
|
||||
%description
|
||||
Jinja2 is one of the most used template engines for Python. It is inspired by Django's
|
||||
@ -66,6 +67,12 @@ popd
|
||||
%doc Jinja2-%{version}/examples
|
||||
|
||||
%changelog
|
||||
* Fri Apr 18 2025 maoyanping <maoyanping@xfusion.com> - 3.1.3-5
|
||||
- Type: CVE
|
||||
- CVE: CVE-2025-27516
|
||||
- SUG: NA
|
||||
- DESC: fix CVE-2025-27516
|
||||
|
||||
* Thu Dec 26 2024 weihaohao <weihaohao2@huawei.com> - 3.1.3-4
|
||||
- Type: CVE
|
||||
- CVE: CVE-2024-56201
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user