]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit
projects / thirdparty / Python / cpython.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1462234) | patch
bpo-35746: Fix segfault in ssl's cert parser (GH-11569)
authorMiss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
Tue, 15 Jan 2019 23:11:52 +0000 (15:11 -0800)
committerGitHub <noreply@github.com>
Tue, 15 Jan 2019 23:11:52 +0000 (15:11 -0800)
commit06b15424b0dcacb1c551b2a36e739fffa8d0c595
tree867883000e2eec29503875f28be030b923b93cd8tree | snapshot
parent1462234baf7398a6b00c0f51905e26caa17d3c60commit | diff
bpo-35746: Fix segfault in ssl's cert parser (GH-11569)

Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
distribution points with empty DP or URI correctly. A malicious or buggy
certificate can result into segfault.

Signed-off-by: Christian Heimes <christian@python.org>
https://bugs.python.org/issue35746
(cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)

Co-authored-by: Christian Heimes <christian@python.org>
Lib/test/talos-2019-0758.pem [new file with mode: 0644] blob
Lib/test/test_ssl.py diff | blob | blame | history
Misc/NEWS.d/next/Security/2019-01-15-18-16-05.bpo-35746.nMSd0j.rst [new file with mode: 0644] blob
Modules/_ssl.c diff | blob | blame | history
Mirror of https://github.com/python/cpython.git