mirrors/cpython
1
0
Fork 0
mirror of https://github.com/python/cpython.git synced 2025-10-01 21:02:15 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 8

bpo-35746: Credit Colin Read and Nicolas Edet (GH-11863)

Browse source 
Add credit for the cert parser vulnerability. Mention also Cisco
TALOS-2018-0758 identifier.
This commit is contained in:
Victor Stinner 2019-02-15 12:25:47 +01:00 committed by GitHub
parent 3e028b2d40
commit 355f16fd4b
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
Misc/NEWS.d/3.8.0a1.rst
View file

@ -6,7 +6,8 @@
[CVE-2019-5010] Fix a NULL pointer deref in ssl module. The cert parser did [CVE-2019-5010] Fix a NULL pointer deref in ssl module. The cert parser did
not handle CRL distribution points with empty DP or URI correctly. A not handle CRL distribution points with empty DP or URI correctly. A
malicious or buggy certificate can result into segfault. malicious or buggy certificate can result into segfault. Vulnerability
(TALOS-2018-0758) reported by Colin Read and Nicolas Edet of Cisco.
.. ..