User: Password:
|
|
Subscribe / Log in / New account

Fedora alert FEDORA-2012-3412 (python-sqlalchemy0.5)

From:  updates@fedoraproject.org
To:  package-announce@lists.fedoraproject.org
Subject:  [SECURITY] Fedora 16 Update: python-sqlalchemy0.5-0.5.8-9.fc16
Date:  Sun, 01 Apr 2012 22:57:08 +0000
Message-ID:  <20120401225708.E1A35210FC@bastion01.phx2.fedoraproject.org>
Archive-link:  Article, Thread

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2012-3412 2012-03-08 20:55:42 -------------------------------------------------------------------------------- Name : python-sqlalchemy0.5 Product : Fedora 16 Version : 0.5.8 Release : 9.fc16 URL : http://www.sqlalchemy.org/ Summary : Modular and flexible ORM library for python Description : SQLAlchemy is an Object Relational Mappper (ORM) that provides a flexible, high-level interface to SQL databases. Database and domain concepts are decoupled, allowing both sides maximum flexibility and power. SQLAlchemy provides a powerful mapping layer that can work as automatically or as manually as you choose, determining relationships based on foreign keys or letting you define the join conditions explicitly, to bridge the gap between database and domain. -------------------------------------------------------------------------------- Update Information: * Fix the sqlalchemy0.5 backwards and forwards compat packages for a security problem with limit. -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 7 2012 Toshio Kuratomi <toshio@fedoraproject.org> - 0.5.8-9 - Patch to fix https://rhn.redhat.com/errata/RHSA-2012-0369.html * Sat Jan 14 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.5.8-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #783305 - CVE-2012-0805 python-sqlalchemy: SQL injection flaw due to not checking LIMIT input for correct type https://bugzilla.redhat.com/show_bug.cgi?id=783305 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update python-sqlalchemy0.5' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-...


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds