[3.4] bpo-35746: Fix segfault in ssl's cert parser (GH-11569) by vstinner · Pull Request #11868 · python/cpython
Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
distribution points with empty DP or URI correctly. A malicious or buggy
certificate can result into segfault.
Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas
Edet of Cisco.
Signed-off-by: Christian Heimes christian@python.org
(cherry picked from commit a37f524)