[SECURITY] Fedora 17 Update: python-sqlalchemy0.5-0.5.8-9.fc17

Thu Apr 12 03:06:42 UTC 2012

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-3373
2012-03-08 05:52:12
--------------------------------------------------------------------------------

Name        : python-sqlalchemy0.5
Product     : Fedora 17
Version     : 0.5.8
Release     : 9.fc17
URL         : http://www.sqlalchemy.org/
Summary     : Modular and flexible ORM library for python
Description :
SQLAlchemy is an Object Relational Mappper (ORM) that provides a flexible,
high-level interface to SQL databases.  Database and domain concepts are
decoupled, allowing both sides maximum flexibility and power. SQLAlchemy
provides a powerful mapping layer that can work as automatically or as manually
as you choose, determining relationships based on foreign keys or letting you
define the join conditions explicitly, to bridge the gap between database and
domain.

--------------------------------------------------------------------------------
Update Information:

* Fix the sqlalchemy0.5 backwards and forwards compat packages for a security problem with limit.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #783305 - CVE-2012-0805 python-sqlalchemy: SQL injection flaw due to not checking LIMIT input for correct type
        https://bugzilla.redhat.com/show_bug.cgi?id=783305
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update python-sqlalchemy0.5' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------