[Bug 279350] devel/py-Jinja2 vulnerable GHSA-h75v-3vvj-5mfj CVE-2024-34064

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Mon, 27 May 2024 13:34:28 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=279350

            Bug ID: 279350
           Summary: devel/py-Jinja2 vulnerable GHSA-h75v-3vvj-5mfj
                    CVE-2024-34064
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: nivit@FreeBSD.org
          Reporter: void@f-m.fm
          Assignee: nivit@FreeBSD.org
             Flags: maintainer-feedback?(nivit@FreeBSD.org)

Hi,

3.1.3 in ports tree is vulnerable
see
https://github.com/advisories/GHSA-h75v-3vvj-5mfj
https://nvd.nist.gov/vuln/detail/CVE-2024-34064

this is not in vulnxml. 3.1.4 is available. please update

-- 
You are receiving this mail because:
You are the assignee for the bug.