From 6905f62e9a8a41fb683c30e18e671c6ccceb01ed Mon Sep 17 00:00:00 2001
From: Mike McLean <mikem@redhat.com>
Date: Feb 16 2019 21:27:48 +0000
Subject: bump release to 1.15.2


---

diff --git a/docs/source/conf.py b/docs/source/conf.py
index 3e6023c..58f6c7d 100644
--- a/docs/source/conf.py
+++ b/docs/source/conf.py
@@ -56,7 +56,7 @@ copyright = u'2017, Mike McLean, Mike B, Dennis Gilmore, Mathieu Bridon, Ian McL
 # The short X.Y version.
 version = '1.15'
 # The full version, including alpha/beta/rc tags.
-release = '1.15.1'
+release = '1.15.2'
 
 # The language for content autogenerated by Sphinx. Refer to documentation
 # for a list of supported languages.
diff --git a/koji.spec b/koji.spec
index 4edc2b8..1d369e2 100644
--- a/koji.spec
+++ b/koji.spec
@@ -31,7 +31,7 @@
 %define release %{baserelease}
 %endif
 Name: koji
-Version: 1.15.1
+Version: 1.15.2
 Release: %{release}%{?dist}
 License: LGPLv2 and GPLv2+
 # koji.ssl libs (from plague) are GPLv2+
@@ -478,6 +478,9 @@ fi
 %endif
 
 %changelog
+* Thu Feb 21 2019 Mike McLean <mikem at redhat.com> - 1.15.2-1
+- Fix CVE-2018-1002161: SQL injection in multiple remote calls
+
 * Thu Mar 29 2018 Mike McLean <mikem at redhat.com> - 1.15.1-1
 - Backport fix for CVE-2018-1002150
 - Backport PR#848: use subprocess.Popen instead of subprocess.check_output