summaryrefslogtreecommitdiffstats
path: root/Python/Python-ast.c
diff options
context:
space:
mode:
authorVictor Stinner <vstinner@redhat.com>2019-02-25 21:28:36 (GMT)
committerlarryhastings <larry@hastings.org>2019-02-25 21:28:36 (GMT)
commit6c655ce34ae54adb8eef22b73108e22cc381cb8d (patch)
tree38f1d4b0beaa4c36f14d839bd8484e9bd489c6aa /Python/Python-ast.c
parentd16eaf36795da48b930b80b20d3805bc27820712 (diff)
downloadcpython-6c655ce34ae54adb8eef22b73108e22cc381cb8d.zip
cpython-6c655ce34ae54adb8eef22b73108e22cc381cb8d.tar.gz
cpython-6c655ce34ae54adb8eef22b73108e22cc381cb8d.tar.bz2
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11868)
Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL distribution points with empty DP or URI correctly. A malicious or buggy certificate can result into segfault. Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas Edet of Cisco. Signed-off-by: Christian Heimes <christian@python.org> (cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)
Diffstat (limited to 'Python/Python-ast.c')
0 files changed, 0 insertions, 0 deletions
generated by cgit v0.12 at 2025-08-30 10:53:34 (GMT)