Morph MORPH
SIGN IN SIGN UP
python / cpython UNCLAIMED

The Python programming language

0 0 59 Python

bpo-33136: Harden ssl module against CVE-2018-8970 (GH-6229)

Harden ssl module against LibreSSL CVE-2018-8970.
X509_VERIFY_PARAM_set1_host() is called with an explicit namelen. A new test
ensures that NULL bytes are not allowed.

Signed-off-by: Christian Heimes <christian@python.org>
C
Christian Heimes committed
d02ac25ab0879f1a6de6937573bf00a16b7bd22e
Parent: e4ce9fa
Committed by GitHub <noreply@github.com> on 3/25/2018, 10:36:13 AM