I have contacted the security response team at Red Hat about the SQLAlchemy issue. They will handle allocating a CVE for it and coordinating with linux-distros as necessary.
https://access.redhat.com/security/team/ https://access.redhat.com/security/team/contact/
Once I hear something back, I'll note it here so that it can be referenced in the OpenStack advisory.
I have contacted the security response team at Red Hat about the SQLAlchemy issue. They will handle allocating a CVE for it and coordinating with linux-distros as necessary.
https:/ /access. redhat. com/security/ team/ /access. redhat. com/security/ team/contact/
https:/
Once I hear something back, I'll note it here so that it can be referenced in the OpenStack advisory.