diff options
Diffstat (limited to 'lang/python27/patches/patch-Misc_NEWS')
-rw-r--r-- | lang/python27/patches/patch-Misc_NEWS | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/lang/python27/patches/patch-Misc_NEWS b/lang/python27/patches/patch-Misc_NEWS new file mode 100644 index 00000000000..17a05723b70 --- /dev/null +++ b/lang/python27/patches/patch-Misc_NEWS @@ -0,0 +1,20 @@ +$NetBSD: patch-Misc_NEWS,v 1.1.2.2 2013/08/21 11:47:14 tron Exp $ + +patch for CVE-2013-4238 taken from +http://hg.python.org/cpython/rev/bd2360476bdb + +--- Misc/NEWS.orig 2013-05-12 03:32:49.000000000 +0000 ++++ Misc/NEWS +@@ -26,6 +26,12 @@ Core and Builtins + Library + ------- + ++- Issue #18709: Fix CVE-2013-4238. The SSL module now handles NULL bytes ++ inside subjectAltName correctly. Formerly the module has used OpenSSL's ++ GENERAL_NAME_print() function to get the string represention of ASN.1 ++ strings for ``rfc822Name`` (email), ``dNSName`` (DNS) and ++ ``uniformResourceIdentifier`` (URI). ++ + - Issue #16601: Restarting iteration over tarfile no more continues from where + it left off. Patch by Michael Birtwell. + |