mirrors/cpython
1
0
Fork 0
mirror of https://github.com/python/cpython.git synced 2025-11-12 07:02:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 8

Issue #18709: Fix CVE-2013-4238. The SSL module now handles NULL bytes

Browse source 
inside subjectAltName correctly. Formerly the module has used OpenSSL's
GENERAL_NAME_print() function to get the string represention of ASN.1
strings for rfc822Name (email), dNSName (DNS) and
uniformResourceIdentifier (URI).
This commit is contained in:
Christian Heimes 2013-08-17 00:54:47 +02:00
parent 29c3fc5d8f
commit 824f7f366d
4 changed files with 184 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

6
Misc/NEWS
View file

@ -66,6 +66,12 @@ Core and Builtins
Library
-------
- Issue #18709: Fix CVE-2013-4238. The SSL module now handles NULL bytes
inside subjectAltName correctly. Formerly the module has used OpenSSL's
GENERAL_NAME_print() function to get the string represention of ASN.1
strings for ``rfc822Name`` (email), ``dNSName`` (DNS) and
``uniformResourceIdentifier`` (URI).
- Issue #18405: Improve the entropy of crypt.mksalt().
- Issue #18676: Change 'positive' to 'non-negative' in queue.py put and get