Endpoint Vulnerability

CVE-2019-5010python: NULL pointer dereference using a specially crafted X509 certificate

Description

A null pointer dereference vulnerability was found in the certificate parsing code in Python. This causes a denial of service to applications when parsing specially crafted certificates. This vulnerability is unlikely to be triggered if application enables SSL/TLS certificate validation and accepts certificates only from trusted root certificate authorities.

Affected Products

python

References

CVE-2019-5010,