File _patchinfo of Package patchinfo.16752

<patchinfo incident="16752">
  <issue tracker="bnc" id="1125815">VUL-0: CVE-2019-8341: python-Jinja2: command injection in function from_string</issue>
  <issue tracker="bnc" id="1132323">VUL-0: CVE-2019-10906: python-Jinja2: Sandbox escape due to information disclosure via str.format</issue>
  <issue tracker="cve" id="2019-8341"/>
  <issue tracker="cve" id="2019-10906"/>
  <packager>StevenK</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for python-Jinja2</summary>
  <description>This update for python-Jinja2 fixes the following issues:

- CVE-2019-10906: Fixed a sandbox escape due to information disclosure via str.format (bsc#1132323).
- CVE-2019-8341: Fixed a command injection in function from_string (bsc#1125815).
</description>
</patchinfo>