logo

Database

Asymmetric denial of service In jinja2

Description

denial of service

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

1-10 of 21

10

Aliases

1. CVE-2020-284932. NVD-2020-284933. OSV-2020-284934. OSV-DEBIAN-2020-284935. OSV-ALPINE-2020-284936. GHSA-g3rq-g295-4j3m7. GCVE-2020-284938. security.gentoo.org9. SECURITY-TRACKER-CVE-2020-2849310. SECURITY-CVE-2020-28493

References

1. https://github.com/pallets/jinja/pull/13432. https://github.com/pallets/jinja/commit/15ef8f09b659f9100610583938005a7a10472d4d3. https://github.com/pallets/jinja/blob/ab81fd9c277900c85da0c322a2ff9d68a235b2e6/src/jinja2/utils.py%23L204. https://github.com/pypa/advisory-database/tree/main/vulns/jinja2/PYSEC-2021-66.yaml5. https://lists.fedoraproject.org/archives/list/[email protected]/message/PVAKCOO7VBVUBM3Q6CBBTPBFNP5NDXF4

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.