Skip to main content

Browse the archive

Staging
v0.5.1
https://github.com/python/cpython
09 December 2020, 11:06:31 UTC
Revision efec7631edf3b9480dc3988c97ffef94df8800da authored by Victor Stinner on 26 February 2019, 00:17:02 UTC, committed by larryhastings on 26 February 2019, 00:17:02 UTC 
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11867)
 
Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
distribution points with empty DP or URI correctly. A malicious or buggy
certificate can result into segfault.

Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas
Edet of Cisco.

Signed-off-by: Christian Heimes <christian@python.org>

(cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)
1 parent 8bcbc78
History
Tip revision: efec7631edf3b9480dc3988c97ffef94df8800da authored by Victor Stinner on 26 February 2019, 00:17:02 UTC
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11867)
Tip revision: efec763
File Mode Size
.github
Doc
Grammar
Include
Lib
Mac
Misc
Modules
Objects
PC
PCbuild
Parser
Programs
Python
Tools
.bzrignore -rw-r--r-- 582 bytes
.gitattributes -rw-r--r-- 798 bytes
.gitignore -rw-r--r-- 1.3 KB
.hgeol -rw-r--r-- 1.0 KB
.hgignore -rw-r--r-- 1.3 KB
.hgtags -rw-r--r-- 8.2 KB
.travis.yml -rw-r--r-- 4.4 KB
LICENSE -rw-r--r-- 12.5 KB
Makefile.pre.in -rw-r--r-- 57.5 KB
README -rw-r--r-- 8.5 KB
aclocal.m4 -rw-r--r-- 10.7 KB
config.guess -rwxr-xr-x 43.2 KB
config.sub -rwxr-xr-x 35.7 KB
configure -rwxr-xr-x 468.0 KB
configure.ac -rw-r--r-- 154.3 KB
install-sh -rwxr-xr-x 7.0 KB
pyconfig.h.in -rw-r--r-- 40.9 KB
setup.py -rw-r--r-- 97.8 KB

README

back to top