Staging
v0.5.1
v0.5.1
https://github.com/python/cpython
Revision efec7631edf3b9480dc3988c97ffef94df8800da authored by Victor Stinner on 26 February 2019, 00:17:02 UTC, committed by larryhastings on 26 February 2019, 00:17:02 UTC
Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL distribution points with empty DP or URI correctly. A malicious or buggy certificate can result into segfault. Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas Edet of Cisco. Signed-off-by: Christian Heimes <christian@python.org> (cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)
1 parent 8bcbc78
Tip revision: efec7631edf3b9480dc3988c97ffef94df8800da authored by Victor Stinner on 26 February 2019, 00:17:02 UTC
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11867)
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (#11867)
Tip revision: efec763
File | Mode | Size |
---|---|---|
.github | ||
Doc | ||
Grammar | ||
Include | ||
Lib | ||
Mac | ||
Misc | ||
Modules | ||
Objects | ||
PC | ||
PCbuild | ||
Parser | ||
Programs | ||
Python | ||
Tools | ||
.bzrignore | -rw-r--r-- | 582 bytes |
.gitattributes | -rw-r--r-- | 798 bytes |
.gitignore | -rw-r--r-- | 1.3 KB |
.hgeol | -rw-r--r-- | 1.0 KB |
.hgignore | -rw-r--r-- | 1.3 KB |
.hgtags | -rw-r--r-- | 8.2 KB |
.travis.yml | -rw-r--r-- | 4.4 KB |
LICENSE | -rw-r--r-- | 12.5 KB |
Makefile.pre.in | -rw-r--r-- | 57.5 KB |
README | -rw-r--r-- | 8.5 KB |
aclocal.m4 | -rw-r--r-- | 10.7 KB |
config.guess | -rwxr-xr-x | 43.2 KB |
config.sub | -rwxr-xr-x | 35.7 KB |
configure | -rwxr-xr-x | 468.0 KB |
configure.ac | -rw-r--r-- | 154.3 KB |
install-sh | -rwxr-xr-x | 7.0 KB |
pyconfig.h.in | -rw-r--r-- | 40.9 KB |
setup.py | -rw-r--r-- | 97.8 KB |
Computing file changes ...