suse · CVE-2016-10745

Quick triage

Priority: high Published: 2021-05-30 13:49:44 UTC Updated: 2026-04-18 15:50:16 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2016-10745 severity important: SUSE including 390 source package names (1.8.6.0.3.2.5:python3-Jinja2-2.10.1-3.5.1, 15.2.3.579.3.383:python3-Jinja2-2.10.1-3.5.1, …), 813 product×package rows across 306 product lines (Container ses/7.1/cephcsi/cephcsi, Container ses/7.1/rook/ceph, … (306 product lines)): Fixed 632, Known Affected 181.

Description:

In Pallets Jinja before 2.8.1, str.format allows a sandbox escape.

cvelogic Threat Intelligence