Skip to main content

Browse the archive

Staging
v0.5.1
https://github.com/python/cpython
09 December 2020, 11:06:31 UTC
Revision efec7631edf3b9480dc3988c97ffef94df8800da authored by Victor Stinner on 26 February 2019, 00:17:02 UTC, committed by larryhastings on 26 February 2019, 00:17:02 UTC 
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11867)
 
Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
distribution points with empty DP or URI correctly. A malicious or buggy
certificate can result into segfault.

Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas
Edet of Cisco.

Signed-off-by: Christian Heimes <christian@python.org>

(cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)
1 parent 8bcbc78
History
Tip revision: efec7631edf3b9480dc3988c97ffef94df8800da authored by Victor Stinner on 26 February 2019, 00:17:02 UTC
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11867)
Tip revision: efec763
File Mode Size
NEWS.d
ACKS -rw-r--r-- 24.5 KB
HISTORY -rw-r--r-- 1.1 MB
Porting -rw-r--r-- 107 bytes
README -rw-r--r-- 1.4 KB
README.AIX -rw-r--r-- 5.0 KB
README.coverity -rw-r--r-- 845 bytes
README.valgrind -rw-r--r-- 4.3 KB
SpecialBuilds.txt -rw-r--r-- 10.9 KB
coverity_model.c -rw-r--r-- 4.1 KB
gdbinit -rw-r--r-- 4.7 KB
indent.pro -rw-r--r-- 557 bytes
python-config.in -rw-r--r-- 2.0 KB
python-config.sh.in -rw-r--r-- 2.9 KB
python-wing3.wpr -rw-r--r-- 555 bytes
python-wing4.wpr -rw-r--r-- 835 bytes
python-wing5.wpr -rw-r--r-- 835 bytes
python.man -rw-r--r-- 13.1 KB
python.pc.in -rw-r--r-- 293 bytes
svnmap.txt -rw-r--r-- 4.1 MB
valgrind-python.supp -rw-r--r-- 8.2 KB
vgrindefs -rw-r--r-- 500 bytes

README

back to top