SUSE Package Hub - openSUSE-2019-2078

Update Info

openSUSE-2019-2078

Security update for python-SQLAlchemy

Type: security

Severity: important

Issued: 2019-09-06

Description:

This update for python-SQLAlchemy fixes the following issues:

Security issues fixed:

- CVE-2019-7164: Fixed SQL Injection via the order_by parameter (bsc#1124593).
- CVE-2019-7548: Fixed SQL Injection via the group_by parameter (bsc#1124593).

This update was imported from the SUSE:SLE-15:Update update project.
This update was imported from the openSUSE:Leap:15.0:Update update project.

References

Packages

python-SQLAlchemy-1.2.7-bp150.2.3.1