cpython.git - https://github.com/python/cpython.git

diff options

author	Victor Stinner <vstinner@redhat.com>	2019-02-26 00:17:02 (GMT)
committer	larryhastings <larry@hastings.org>	2019-02-26 00:17:02 (GMT)
commit	efec7631edf3b9480dc3988c97ffef94df8800da (patch)
tree	8d1520faffca8f0cce45f31fab2d8eca60ab5843 /Python/exceptions.c
parent	8bcbc7896d1fe1c289bae339d408fdf1472a00fa (diff)
download	cpython-efec7631edf3b9480dc3988c97ffef94df8800da.zip cpython-efec7631edf3b9480dc3988c97ffef94df8800da.tar.gz cpython-efec7631edf3b9480dc3988c97ffef94df8800da.tar.bz2

bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11867)

Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL distribution points with empty DP or URI correctly. A malicious or buggy certificate can result into segfault. Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas Edet of Cisco. Signed-off-by: Christian Heimes <christian@python.org> (cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)

Diffstat (limited to 'Python/exceptions.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: