[CRITICAL] Potential SQL injection in ORDER and GROUP statements of Zend_Db_Select

PKSA-8gbh-rfqt-hz91 CVE-2016-6233 GHSA-p9hp-3gpv-52w3

Affected package: zendframework/zendframework1

Affected version: <1.12.19

Reported by:
GitHub, FriendsOfPHP/security-advisories