diff options
author | Victor Stinner <vstinner@redhat.com> | 2019-02-26 00:17:02 (GMT) |
---|---|---|
committer | larryhastings <larry@hastings.org> | 2019-02-26 00:17:02 (GMT) |
commit | efec7631edf3b9480dc3988c97ffef94df8800da (patch) | |
tree | 8d1520faffca8f0cce45f31fab2d8eca60ab5843 /Python/exceptions.c | |
parent | 8bcbc7896d1fe1c289bae339d408fdf1472a00fa (diff) | |
download | cpython-efec7631edf3b9480dc3988c97ffef94df8800da.zip cpython-efec7631edf3b9480dc3988c97ffef94df8800da.tar.gz cpython-efec7631edf3b9480dc3988c97ffef94df8800da.tar.bz2 |
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11867)
Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
distribution points with empty DP or URI correctly. A malicious or buggy
certificate can result into segfault.
Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas
Edet of Cisco.
Signed-off-by: Christian Heimes <christian@python.org>
(cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)
Diffstat (limited to 'Python/exceptions.c')
0 files changed, 0 insertions, 0 deletions