traverseda
/
cpython
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
cpython/Misc/NEWS.d/next/Security
History
Christian Heimes d02ac25ab0
bpo-33136: Harden ssl module against CVE-2018-8970 (GH-6229) 
Harden ssl module against LibreSSL CVE-2018-8970.
X509_VERIFY_PARAM_set1_host() is called with an explicit namelen. A new test
ensures that NULL bytes are not allowed.

Signed-off-by: Christian Heimes <christian@python.org>
 		2018-03-25 12:36:13 +02:00
..
2017-08-06-14-43-45.bpo-28414.mzZ6vD.rst [bpo-28414] Make all hostnames in SSL module IDN A-labels (GH-5128) 2018-02-23 17:35:08 -08:00
2018-03-02-10-24-52.bpo-32981.O_qDyj.rst bpo-32981: Fix catastrophic backtracking vulns (#5955) 2018-03-03 21:33:32 -08:00
2018-03-05-10-09-51.bpo-33001.elj4Aa.rst bpo-33001: Prevent buffer overrun in os.symlink (GH-5989) 2018-03-05 14:26:08 -08:00
2018-03-25-12-05-43.bpo-33136.TzSN4x.rst bpo-33136: Harden ssl module against CVE-2018-8970 (GH-6229) 2018-03-25 12:36:13 +02:00
README.rst Link to blurb on PyPI in the NEWS.d READMEs. (#3323) 2017-09-05 10:38:05 -07:00

README.rst 

Put news entry `blurb`_ files for the *Security* section in this directory.

.. _blurb: https://pypi.org/project/blurb/