]> granicus.if.org Git - python/commit
projects / python / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c9f872b) | patch
bpo-35746: Fix segfault in ssl's cert parser (GH-11569)
authorChristian Heimes <christian@python.org>
Tue, 15 Jan 2019 22:47:42 +0000 (23:47 +0100)
committerMiss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
Tue, 15 Jan 2019 22:47:42 +0000 (14:47 -0800)
commita37f52436f9aa4b9292878b72f3ff1480e2606c3
tree241263055db201418a7288a883eefd783ff59364tree | snapshot
parentc9f872b0bdce5888f1879fa74e098bf4a05430c5commit | diff
bpo-35746: Fix segfault in ssl's cert parser (GH-11569)

Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
distribution points with empty DP or URI correctly. A malicious or buggy
certificate can result into segfault.

Signed-off-by: Christian Heimes <christian@python.org>
https://bugs.python.org/issue35746
Lib/test/talos-2019-0758.pem [new file with mode: 0644] blob
Lib/test/test_ssl.py diff | blob | history
Misc/NEWS.d/next/Security/2019-01-15-18-16-05.bpo-35746.nMSd0j.rst [new file with mode: 0644] blob
Modules/_ssl.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.