Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / python / cpython3 / be5de958e9052e322b0087c6dba81cdad0c3e031
commitbe5de958e9052e322b0087c6dba81cdad0c3e031[log] [tgz]
authorMiss Islington (bot) <31488909+miss-islington@users.noreply.github.com>Tue Jan 15 15:03:36 2019 -0800
committerGitHub <noreply@github.com>Tue Jan 15 15:03:36 2019 -0800
tree072f968b6e5da6a60340a7df2fac8ff11a4629c1
parentc9f26714d511a338ba2fdd926e3dc62636f31815 [diff]
bpo-35746: Fix segfault in ssl's cert parser (GH-11569)


Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
distribution points with empty DP or URI correctly. A malicious or buggy
certificate can result into segfault.

Signed-off-by: Christian Heimes <christian@python.org>

https://bugs.python.org/issue35746
(cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)

Co-authored-by: Christian Heimes <christian@python.org>
4 files changed
tree: 072f968b6e5da6a60340a7df2fac8ff11a4629c1
  1. .azure-pipelines/
  2. .github/
  3. Doc/
  4. Grammar/
  5. Include/
  6. Lib/
  7. m4/
  8. Mac/
  9. Misc/
  10. Modules/
  11. Objects/
  12. Parser/
  13. PC/
  14. PCbuild/
  15. Programs/
  16. Python/
  17. Tools/
  18. .gitattributes
  19. .gitignore
  20. .travis.yml
  21. aclocal.m4
  22. CODE_OF_CONDUCT.rst
  23. config.guess
  24. config.sub
  25. configure
  26. configure.ac
  27. install-sh
  28. LICENSE
  29. Makefile.pre.in
  30. pyconfig.h.in
  31. README.rst
  32. setup.py