~ubuntu-branches/ubuntu/quantal/python3.3/quantal-updates

Viewing all changes in revision 16.

  • Committer: Package Import Robot
  • Author(s): Marc Deslauriers
  • Date: 2013-09-25 10:26:47 UTC
  • Revision ID: package-import@ubuntu.com-20130925102647-05apb5mk512xtsgg
Tags: 3.3.0-1ubuntu0.1
* SECURITY UPDATE: denial of service via ssl hostname wildcards
  - debian/patches/CVE-2013-2099.diff: limit number of wildcards in
    Lib/ssl.py, add test to Lib/test/test_ssl.py.
  - CVE-2013-2099
* SECURITY UPDATE: incorrect ssl hostname verification
  - debian/patches/CVE-2013-4238.diff: correctly handle NULL bytes in
    the subjectAltName in Modules/_ssl.c, add test to
    Lib/test/test_ssl.py, Lib/test/nullbytecert.pem.
  - CVE-2013-4238

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: