| Release | Version |
|---|---|
| jessie | 0.9.8+dfsg-0.1+deb8u1 |
| stretch | 1.0.15+ds1-1+deb9u1 |
| buster | 1.2.18+ds1-2 |
| bullseye | 1.3.22+ds1-1 |
| bookworm | 1.4.46+ds1-1 |
| trixie | 1.4.50+ds1-1 |
| sid | 1.4.50+ds1-1 |
| Bug | Description |
|---|---|
| CVE-2019-7548 | SQLAlchemy 1.2.17 has SQL Injection when the group_by parameter can be ... |
| CVE-2019-7164 | SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injecti ... |
| CVE-2012-0805 | Multiple SQL injection vulnerabilities in SQLAlchemy before 0.7.0b4, a ... |
| DSA / DLA | Description |
|---|---|
| DLA-2811-1 | sqlalchemy - security update |
| ELA-105-1 | sqlalchemy - security update |
| DLA-1718-1 | sqlalchemy - security update |
| DSA-2449-1 | sqlalchemy - missing input sanitization |