SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP1-2019-2253

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP1-2019-2253

Security update for python-SQLAlchemy

Type: security

Severity: important

Issued: 2019-09-19

Description:

This update for python-SQLAlchemy fixes the following issues:

Security issues fixed:

- CVE-2019-7164: Fixed SQL Injection via the order_by parameter (bsc#1124593).
- CVE-2019-7548: Fixed SQL Injection via the group_by parameter (bsc#1124593).

References

Packages

python-SQLAlchemy-1.2.14-6.3.1