Staging
v0.5.1
v0.5.1
https://github.com/python/cpython
Revision 6c655ce34ae54adb8eef22b73108e22cc381cb8d authored by Victor Stinner on 25 February 2019, 21:28:36 UTC, committed by larryhastings on 25 February 2019, 21:28:36 UTC
Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL distribution points with empty DP or URI correctly. A malicious or buggy certificate can result into segfault. Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas Edet of Cisco. Signed-off-by: Christian Heimes <christian@python.org> (cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)
1 parent d16eaf3
Tip revision: 6c655ce34ae54adb8eef22b73108e22cc381cb8d authored by Victor Stinner on 25 February 2019, 21:28:36 UTC
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11868)
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11868)
Tip revision: 6c655ce
| File | Mode | Size |
|---|---|---|
| Python-ast.c | -rw-r--r-- | 223.6 KB |
| _warnings.c | -rw-r--r-- | 30.9 KB |
| asdl.c | -rw-r--r-- | 1.4 KB |
| ast.c | -rw-r--r-- | 117.3 KB |
| bltinmodule.c | -rw-r--r-- | 75.4 KB |
| ceval.c | -rw-r--r-- | 147.3 KB |
| ceval_gil.h | -rw-r--r-- | 8.9 KB |
| codecs.c | -rw-r--r-- | 39.6 KB |
| compile.c | -rw-r--r-- | 124.7 KB |
| condvar.h | -rw-r--r-- | 11.0 KB |
| dtoa.c | -rw-r--r-- | 81.3 KB |
| dup2.c | -rw-r--r-- | 705 bytes |
| dynamic_annotations.c | -rw-r--r-- | 6.6 KB |
| dynload_aix.c | -rw-r--r-- | 5.6 KB |
| dynload_dl.c | -rw-r--r-- | 509 bytes |
| dynload_hpux.c | -rw-r--r-- | 1.8 KB |
| dynload_next.c | -rw-r--r-- | 3.8 KB |
| dynload_shlib.c | -rw-r--r-- | 3.3 KB |
| dynload_stub.c | -rw-r--r-- | 186 bytes |
| dynload_win.c | -rw-r--r-- | 9.5 KB |
| errors.c | -rw-r--r-- | 30.5 KB |
| fileutils.c | -rw-r--r-- | 27.7 KB |
| formatter_unicode.c | -rw-r--r-- | 48.7 KB |
| frozen.c | -rw-r--r-- | 1.6 KB |
| frozenmain.c | -rw-r--r-- | 2.7 KB |
| future.c | -rw-r--r-- | 4.6 KB |
| getargs.c | -rw-r--r-- | 53.7 KB |
| getcompiler.c | -rw-r--r-- | 366 bytes |
| getcopyright.c | -rw-r--r-- | 511 bytes |
| getopt.c | -rw-r--r-- | 3.4 KB |
| getplatform.c | -rw-r--r-- | 130 bytes |
| getversion.c | -rw-r--r-- | 289 bytes |
| graminit.c | -rw-r--r-- | 41.3 KB |
| import.c | -rw-r--r-- | 64.9 KB |
| importdl.c | -rw-r--r-- | 3.6 KB |
| importdl.h | -rw-r--r-- | 544 bytes |
| importlib.h | -rw-r--r-- | 226.5 KB |
| makeopcodetargets.py | -rwxr-xr-x | 1.2 KB |
| marshal.c | -rw-r--r-- | 47.7 KB |
| modsupport.c | -rw-r--r-- | 14.1 KB |
| mysnprintf.c | -rw-r--r-- | 3.3 KB |
| mystrtoul.c | -rw-r--r-- | 8.1 KB |
| opcode_targets.h | -rw-r--r-- | 6.2 KB |
| peephole.c | -rw-r--r-- | 24.7 KB |
| pyarena.c | -rw-r--r-- | 5.5 KB |
| pyctype.c | -rw-r--r-- | 7.7 KB |
| pyfpe.c | -rw-r--r-- | 623 bytes |
| pyhash.c | -rw-r--r-- | 13.0 KB |
| pymath.c | -rw-r--r-- | 1.5 KB |
| pystate.c | -rw-r--r-- | 25.2 KB |
| pystrcmp.c | -rw-r--r-- | 613 bytes |
| pystrtod.c | -rw-r--r-- | 38.2 KB |
| pythonrun.c | -rw-r--r-- | 83.7 KB |
| pytime.c | -rw-r--r-- | 6.5 KB |
| random.c | -rw-r--r-- | 8.8 KB |
| sigcheck.c | -rw-r--r-- | 529 bytes |
| strdup.c | -rw-r--r-- | 247 bytes |
| structmember.c | -rw-r--r-- | 8.7 KB |
| symtable.c | -rw-r--r-- | 54.5 KB |
| sysmodule.c | -rw-r--r-- | 62.5 KB |
| thread.c | -rw-r--r-- | 12.4 KB |
| thread_foobar.h | -rw-r--r-- | 1.4 KB |
| thread_nt.h | -rw-r--r-- | 10.3 KB |
| thread_pthread.h | -rw-r--r-- | 17.2 KB |
| traceback.c | -rw-r--r-- | 18.4 KB |
Computing file changes ...
