 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.883048 |
| Categoría: | CentOS Local Security Checks |
| Título: | CentOS Update for python-jinja2 CESA-2019:1022 centos7 |
| Resumen: | The remote host is missing an update for the 'python-jinja2'; package(s) announced via the CESA-2019:1022 advisory. |
| Descripción: | Summary: The remote host is missing an update for the 'python-jinja2' package(s) announced via the CESA-2019:1022 advisory. Vulnerability Insight: The python-jinja2 package contains Jinja2, a template engine written in pure Python. Jinja2 provides a Django inspired non-XML syntax but supports inline expressions and an optional sandboxed environment. Security Fix(es): * python-jinja2: Sandbox escape due to information disclosure via str.format (CVE-2016-10745) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Affected Software/OS: 'python-jinja2' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2016-10745 https://github.com/pallets/jinja/commit/9b53045c34e61013dc8f09b7e52a555fa16bed16 https://palletsprojects.com/blog/jinja-281-released/ RedHat Security Advisories: RHSA-2019:1022 https://access.redhat.com/errata/RHSA-2019:1022 RedHat Security Advisories: RHSA-2019:1237 https://access.redhat.com/errata/RHSA-2019:1237 RedHat Security Advisories: RHSA-2019:1260 https://access.redhat.com/errata/RHSA-2019:1260 RedHat Security Advisories: RHSA-2019:3964 https://access.redhat.com/errata/RHSA-2019:3964 RedHat Security Advisories: RHSA-2019:4062 https://access.redhat.com/errata/RHSA-2019:4062 SuSE Security Announcement: openSUSE-SU-2019:1395 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00030.html SuSE Security Announcement: openSUSE-SU-2019:1614 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00064.html https://usn.ubuntu.com/4011-1/ https://usn.ubuntu.com/4011-2/ |
| Copyright | Copyright (C) 2019 Greenbone AG |
| Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |