It was discovered that Mako incorrectly handled URIs with double-slash prefixes in TemplateLookup. A remote attacker could possibly use this issue to obtain sensitive information.
1.1.3+ds1-2ubuntu0.21.3.2-1ubuntu0.11.3.9-1ubuntu0.11.3.10-3ubuntu0.11.0.3+ds1-1ubuntu1+esm21.0.7+ds1-1ubuntu0.2+esm11.1.0+ds1-1ubuntu2.1+esm1