Rietveld Code Review Tool
Help | Bug tracker | Discussion group | Source code | Sign in
(1)

Unified Diff: Misc/NEWS

Issue 18135: _ssl module: possible integer overflow for very long strings (+2^31 bytes)
Patch Set: Created 6 years, 7 months ago
Use n/p to move between diff chunks; N/P to move between comments. Please Sign in to add in-line comments.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « no previous file | Modules/_ssl.c » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
--- a/Misc/NEWS Mon Jun 24 20:38:46 2013 +0100
+++ b/Misc/NEWS Mon Jun 24 22:19:39 2013 +0200
@@ -38,9 +38,9 @@ Core and Builtins
Library
-------
-- Issue #18135: Fix a possible integer overflow in ssl.SSLSocket.write()
- and in ssl.SSLContext.load_cert_chain() for strings and passwords longer than
- 2 gigabytes.
+- Issue #18135: ssl.SSLSocket.write() now raises an OverflowError if the input
+ string in longer than 2 gigabytes. ssl.SSLContext.load_cert_chain() now
+ raises a ValueError if the password is longer than 2 gigabytes.
- Issue #18248: Fix libffi build on AIX.
« no previous file with comments | « no previous file | Modules/_ssl.c » ('j') | no next file with comments »

RSS Feeds Recent Issues | This issue
This is Rietveld 894c83f36cb7+