On Sun, 2024-03-10 at 23:34 -0700, Anuj Mittal wrote:
> On Thu, 2023-12-07 at 16:33 -1000, Steve Sakoman wrote:
> > From: Narpat Mali
> >
> > cryptography is a package designed to expose cryptographic
> > primitives
> > and recipes to Python developers. Calling
> > `load_pem_pkcs7_certificates`
On Thu, 2023-12-07 at 16:33 -1000, Steve Sakoman wrote:
> From: Narpat Mali
>
> cryptography is a package designed to expose cryptographic primitives
> and recipes to Python developers. Calling
> `load_pem_pkcs7_certificates`
> or `load_der_pkcs7_certificates` could lead to a NULL-pointer
>
From: Narpat Mali
cryptography is a package designed to expose cryptographic primitives
and recipes to Python developers. Calling `load_pem_pkcs7_certificates`
or `load_der_pkcs7_certificates` could lead to a NULL-pointer dereference
and segfault. Exploitation of this vulnerability poses a