cpython

Commit Graph

Author	SHA1	Message	Date
Christian Heimes	d02ac25ab0	bpo-33136: Harden ssl module against CVE-2018-8970 (GH-6229) Harden ssl module against LibreSSL CVE-2018-8970. X509_VERIFY_PARAM_set1_host() is called with an explicit namelen. A new test ensures that NULL bytes are not allowed. Signed-off-by: Christian Heimes <christian@python.org>	2018-03-25 12:36:13 +02:00

Author

SHA1

Message

Date

Christian Heimes

d02ac25ab0

bpo-33136: Harden ssl module against CVE-2018-8970 (GH-6229)

Harden ssl module against LibreSSL CVE-2018-8970.
X509_VERIFY_PARAM_set1_host() is called with an explicit namelen. A new test
ensures that NULL bytes are not allowed.

Signed-off-by: Christian Heimes <christian@python.org>

2018-03-25 12:36:13 +02:00

1 Commits