Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / python / cpython3 / a37f52436f9aa4b9292878b72f3ff1480e2606c3
commita37f52436f9aa4b9292878b72f3ff1480e2606c3[log] [tgz]
authorChristian Heimes <christian@python.org>Tue Jan 15 23:47:42 2019 +0100
committerMiss Islington (bot) <31488909+miss-islington@users.noreply.github.com>Tue Jan 15 14:47:42 2019 -0800
tree241263055db201418a7288a883eefd783ff59364
parentc9f872b0bdce5888f1879fa74e098bf4a05430c5 [diff]
bpo-35746: Fix segfault in ssl's cert parser (GH-11569)



Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
distribution points with empty DP or URI correctly. A malicious or buggy
certificate can result into segfault.

Signed-off-by: Christian Heimes <christian@python.org>



https://bugs.python.org/issue35746
4 files changed
tree: 241263055db201418a7288a883eefd783ff59364
  1. .azure-pipelines/
  2. .github/
  3. Doc/
  4. Grammar/
  5. Include/
  6. Lib/
  7. m4/
  8. Mac/
  9. Misc/
  10. Modules/
  11. Objects/
  12. Parser/
  13. PC/
  14. PCbuild/
  15. Programs/
  16. Python/
  17. Tools/
  18. .gitattributes
  19. .gitignore
  20. .travis.yml
  21. aclocal.m4
  22. CODE_OF_CONDUCT.md
  23. config.guess
  24. config.sub
  25. configure
  26. configure.ac
  27. install-sh
  28. LICENSE
  29. Makefile.pre.in
  30. pyconfig.h.in
  31. README.rst
  32. setup.py