[issue17980] CVE-2013-2099 ssl.match_hostname() trips over crafted wildcard names
Georg Brandl
report at bugs.python.org
Thu May 16 20:45:01 CEST 2013
Georg Brandl added the comment:
It's certainly a security fix, but probably not one that warrants an immediate release.
If you commit it to the 3.2 branch, that's fine, it will get picked up by coming releases.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue17980>
_______________________________________
More information about the Python-bugs-list
mailing list