]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit
projects / thirdparty / Python / cpython.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d09e8ce) | patch
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (GH-11573)
authorMiss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
Wed, 16 Jan 2019 01:16:36 +0000 (17:16 -0800)
committerNed Deily <nad@python.org>
Wed, 16 Jan 2019 01:16:36 +0000 (20:16 -0500)
commit216a4d83c3b72f4fdcd81b588dc3f42cc461739a
tree67bd149c36fb1f4c38aac5d237e6958c7145af71tree | snapshot
parentd09e8cecf214b1de457feae01860f5592f912a8ecommit | diff
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (GH-11573)

Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
distribution points with empty DP or URI correctly. A malicious or buggy
certificate can result into segfault.

Signed-off-by: Christian Heimes <christian@python.org>
https://bugs.python.org/issue35746
(cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)

Co-authored-by: Christian Heimes <christian@python.org>
Lib/test/talos-2019-0758.pem [new file with mode: 0644] blob
Lib/test/test_ssl.py diff | blob | blame | history
Misc/NEWS.d/next/Security/2019-01-15-18-16-05.bpo-35746.nMSd0j.rst [new file with mode: 0644] blob
Modules/_ssl.c diff | blob | blame | history
Mirror of https://github.com/python/cpython.git