Matej Cepl c457f4f6ba - bsc#1122191: add CVE-2019-5010-null-defer-x509-cert-DOS.patch ...

fixing bpo-35746.
  An exploitable denial-of-service vulnerability exists in the
  X509 certificate parser of Python.org Python 2.7.11 / 3.7.2.
  A specially crafted X509 certificate can cause a NULL pointer
  dereference, resulting in a denial of service. An attacker can
  initiate or accept TLS connections using crafted certificates
  to trigger this vulnerability.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:Factory/python?expand=0&rev=239

2019-01-20 01:08:59 +00:00

172 B

Raw Blame History

View Raw