diff options
| author | Benjamin Peterson <benjamin@python.org> | 2016-06-11 20:16:42 (GMT) |
|---|---|---|
| committer | Benjamin Peterson <benjamin@python.org> | 2016-06-11 20:16:42 (GMT) |
| commit | 46b32f307c48bcb999b22eebf65ffe8ed5cca544 (patch) | |
| tree | 1ef86cb8171d8418a748f86ec21c972f69b5847a | |
| parent | 3d4d01f614d894327bbdc1feadebd50b2d3621ff (diff) | |
| download | cpython-46b32f307c48bcb999b22eebf65ffe8ed5cca544.zip cpython-46b32f307c48bcb999b22eebf65ffe8ed5cca544.tar.gz cpython-46b32f307c48bcb999b22eebf65ffe8ed5cca544.tar.bz2 | |
raise an error when STARTTLS fails
| -rwxr-xr-x | Lib/smtplib.py | 5 | ||||
| -rw-r--r-- | Misc/NEWS | 3 |
2 files changed, 8 insertions, 0 deletions
diff --git a/Lib/smtplib.py b/Lib/smtplib.py index db23ff0..ac1f593 100755 --- a/Lib/smtplib.py +++ b/Lib/smtplib.py @@ -695,6 +695,11 @@ class SMTP: self.ehlo_resp = None self.esmtp_features = {} self.does_esmtp = 0 + else: + # RFC 3207: + # 501 Syntax error (no parameters allowed) + # 454 TLS not available due to temporary reason + raise SMTPResponseException(resp, reply) return (resp, reply) def sendmail(self, from_addr, to_addrs, msg, mail_options=[], @@ -19,6 +19,9 @@ Core and Builtins Library ------- +- Fix TLS stripping vulnerability in smptlib, CVE-2016-0772. Reported by Team + Oststrom + - Issue #25939: On Windows open the cert store readonly in ssl.enum_certificates. - Issue #26012: Don't traverse into symlinks for ** pattern in |