Staging
v0.5.1
v0.5.1
https://github.com/python/cpython
Revision 6c655ce34ae54adb8eef22b73108e22cc381cb8d authored by Victor Stinner on 25 February 2019, 21:28:36 UTC, committed by larryhastings on 25 February 2019, 21:28:36 UTC
Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL distribution points with empty DP or URI correctly. A malicious or buggy certificate can result into segfault. Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas Edet of Cisco. Signed-off-by: Christian Heimes <christian@python.org> (cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)
1 parent d16eaf3
Tip revision: 6c655ce34ae54adb8eef22b73108e22cc381cb8d authored by Victor Stinner on 25 February 2019, 21:28:36 UTC
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11868)
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11868)
Tip revision: 6c655ce
| File | Mode | Size |
|---|---|---|
| stringlib | ||
| abstract.c | -rw-r--r-- | 68.3 KB |
| accu.c | -rw-r--r-- | 2.4 KB |
| boolobject.c | -rw-r--r-- | 6.5 KB |
| bytearrayobject.c | -rw-r--r-- | 89.3 KB |
| bytes_methods.c | -rw-r--r-- | 9.1 KB |
| bytesobject.c | -rw-r--r-- | 87.8 KB |
| capsule.c | -rw-r--r-- | 7.2 KB |
| cellobject.c | -rw-r--r-- | 4.8 KB |
| classobject.c | -rw-r--r-- | 19.1 KB |
| codeobject.c | -rw-r--r-- | 19.4 KB |
| complexobject.c | -rw-r--r-- | 31.0 KB |
| descrobject.c | -rw-r--r-- | 53.2 KB |
| dictnotes.txt | -rw-r--r-- | 6.0 KB |
| dictobject.c | -rw-r--r-- | 116.6 KB |
| enumobject.c | -rw-r--r-- | 12.7 KB |
| exceptions.c | -rw-r--r-- | 84.0 KB |
| fileobject.c | -rw-r--r-- | 15.5 KB |
| floatobject.c | -rw-r--r-- | 65.8 KB |
| frameobject.c | -rw-r--r-- | 32.1 KB |
| funcobject.c | -rw-r--r-- | 30.6 KB |
| genobject.c | -rw-r--r-- | 16.8 KB |
| iterobject.c | -rw-r--r-- | 9.1 KB |
| listobject.c | -rw-r--r-- | 85.9 KB |
| listsort.txt | -rw-r--r-- | 34.9 KB |
| lnotab_notes.txt | -rw-r--r-- | 5.3 KB |
| longobject.c | -rw-r--r-- | 155.5 KB |
| memoryobject.c | -rw-r--r-- | 86.5 KB |
| methodobject.c | -rw-r--r-- | 11.0 KB |
| moduleobject.c | -rw-r--r-- | 15.0 KB |
| namespaceobject.c | -rw-r--r-- | 7.3 KB |
| object.c | -rw-r--r-- | 55.4 KB |
| obmalloc.c | -rw-r--r-- | 75.2 KB |
| rangeobject.c | -rw-r--r-- | 36.8 KB |
| setobject.c | -rw-r--r-- | 71.2 KB |
| sliceobject.c | -rw-r--r-- | 18.4 KB |
| structseq.c | -rw-r--r-- | 12.9 KB |
| tupleobject.c | -rw-r--r-- | 29.7 KB |
| typeobject.c | -rw-r--r-- | 219.9 KB |
| typeslots.inc | -rw-r--r-- | 3.6 KB |
| typeslots.py | -rwxr-xr-x | 821 bytes |
| unicodectype.c | -rw-r--r-- | 7.5 KB |
| unicodeobject.c | -rw-r--r-- | 449.3 KB |
| unicodetype_db.h | -rw-r--r-- | 187.3 KB |
| weakrefobject.c | -rw-r--r-- | 29.4 KB |
Computing file changes ...
