]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit
projects / thirdparty / Python / cpython.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c9f2671) | patch
bpo-35746: Fix segfault in ssl's cert parser (GH-11569)
authorMiss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
Tue, 15 Jan 2019 23:03:36 +0000 (15:03 -0800)
committerGitHub <noreply@github.com>
Tue, 15 Jan 2019 23:03:36 +0000 (15:03 -0800)
commitbe5de958e9052e322b0087c6dba81cdad0c3e031
tree072f968b6e5da6a60340a7df2fac8ff11a4629c1tree | snapshot
parentc9f26714d511a338ba2fdd926e3dc62636f31815commit | diff
bpo-35746: Fix segfault in ssl's cert parser (GH-11569)

Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
distribution points with empty DP or URI correctly. A malicious or buggy
certificate can result into segfault.

Signed-off-by: Christian Heimes <christian@python.org>
https://bugs.python.org/issue35746
(cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)

Co-authored-by: Christian Heimes <christian@python.org>
Lib/test/talos-2019-0758.pem [new file with mode: 0644] blob
Lib/test/test_ssl.py diff | blob | blame | history
Misc/NEWS.d/next/Security/2019-01-15-18-16-05.bpo-35746.nMSd0j.rst [new file with mode: 0644] blob
Modules/_ssl.c diff | blob | blame | history
Mirror of https://github.com/python/cpython.git