python3: update to 3.6.9.
This commit is contained in:
parent
2a4e178e35
commit
543e9e715c
2 changed files with 3 additions and 35 deletions
|
@ -1,32 +0,0 @@
|
|||
commit 216a4d83c3b72f4fdcd81b588dc3f42cc461739a
|
||||
Author: Miss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
|
||||
Date: Tue Jan 15 17:16:36 2019 -0800
|
||||
|
||||
bpo-35746: Fix segfault in ssl's cert parser (GH-11569) (GH-11573)
|
||||
|
||||
Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL
|
||||
distribution points with empty DP or URI correctly. A malicious or buggy
|
||||
certificate can result into segfault.
|
||||
|
||||
Signed-off-by: Christian Heimes <christian@python.org>
|
||||
|
||||
https://bugs.python.org/issue35746
|
||||
(cherry picked from commit a37f52436f9aa4b9292878b72f3ff1480e2606c3)
|
||||
|
||||
Co-authored-by: Christian Heimes <christian@python.org>
|
||||
|
||||
diff --git Modules/_ssl.c Modules/_ssl.c
|
||||
index a188d6a729..7365630a5e 100644
|
||||
--- Modules/_ssl.c
|
||||
+++ Modules/_ssl.c
|
||||
@@ -1338,6 +1338,10 @@ _get_crl_dp(X509 *certificate) {
|
||||
STACK_OF(GENERAL_NAME) *gns;
|
||||
|
||||
dp = sk_DIST_POINT_value(dps, i);
|
||||
+ if (dp->distpoint == NULL) {
|
||||
+ /* Ignore empty DP value, CVE-2019-5010 */
|
||||
+ continue;
|
||||
+ }
|
||||
gns = dp->distpoint->name.fullname;
|
||||
|
||||
for (j=0; j < sk_GENERAL_NAME_num(gns); j++) {
|
|
@ -3,15 +3,15 @@
|
|||
# THIS PKG MUST BE SYNCHRONIZED WITH "srcpkgs/python3-tkinter".
|
||||
#
|
||||
pkgname=python3
|
||||
version=3.6.8
|
||||
revision=4
|
||||
version=3.6.9
|
||||
revision=1
|
||||
wrksrc="Python-${version}"
|
||||
short_desc="Interpreted, interactive, object-oriented programming language (${version%.*} series)"
|
||||
maintainer="Juan RP <xtraeme@voidlinux.org>"
|
||||
homepage="https://www.python.org"
|
||||
license="Python-2.0"
|
||||
distfiles="https://www.python.org/ftp/python/${version}/Python-${version}.tar.xz"
|
||||
checksum=35446241e995773b1bed7d196f4b624dadcadc8429f26282e756b2fb8a351193
|
||||
checksum=5e2f5f554e3f8f7f0296f7e73d8600c4e9acbaee6b2555b83206edf5153870da
|
||||
|
||||
pycompile_dirs="usr/lib/python${version%.*}"
|
||||
hostmakedepends="pkg-config"
|
||||
|
|
Loading…
Reference in a new issue