Skip to content

C
cpython
Commit 826a8b70 authored by Victor Stinner's avatar Victor Stinner Committed by GitHub
Browse files
Options

bpo-35746: Credit Colin Read and Nicolas Edet (GH-11866) 

Add credit for the cert parser vulnerability. Mention also Cisco
TALOS-2018-0758 identifier.
parent 2f1a317d
Hide whitespace changes
Inline Side-by-side
Showing with 2 additions and 1 deletion
Misc/NEWS.d/next/Security/2019-01-15-18-16-05.bpo-35746.nMSd0j.rst
View file @ 826a8b70
[CVE-2019-5010] Fix a NULL pointer deref in ssl module. The cert parser did [CVE-2019-5010] Fix a NULL pointer deref in ssl module. The cert parser did
not handle CRL distribution points with empty DP or URI correctly. A not handle CRL distribution points with empty DP or URI correctly. A
malicious or buggy certificate can result into segfault. malicious or buggy certificate can result into segfault. Vulnerability
(TALOS-2018-0758) reported by Colin Read and Nicolas Edet of Cisco.
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7