{"id":"PSF-2019-8","summary":"TALOS-2018-0758 SSL CRL distribution points Denial of Service","details":"An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.6.6. A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of service. An attacker can initiate or accept TLS connections using crafted certificates to trigger this vulnerability.","aliases":["CVE-2019-5010"],"modified":"2025-10-09T01:01:38.585265Z","published":"2019-10-31T20:05:57Z","database_specific":{"cwe_ids":[]},"references":[{"type":"REPORT","url":"https://bugs.python.org/issue35746"},{"type":"WEB","url":"https://blog.talosintelligence.com/2019/01/vulnerability-spotlight-pythonorg.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/python/cpython","events":[{"introduced":"0"},{"fixed":"06b15424b0dcacb1c551b2a36e739fffa8d0c595"},{"fixed":"216a4d83c3b72f4fdcd81b588dc3f42cc461739a"},{"fixed":"6c655ce34ae54adb8eef22b73108e22cc381cb8d"},{"fixed":"a37f52436f9aa4b9292878b72f3ff1480e2606c3"},{"fixed":"be5de958e9052e322b0087c6dba81cdad0c3e031"},{"fixed":"efec7631edf3b9480dc3988c97ffef94df8800da"}]}],"versions":["2.5","3.2","v0.9.8","v0.9.9","v1.0.1","v1.0.2","v1.1","v1.1.1","v1.2","v1.2b1","v1.2b2","v1.2b3","v1.2b4","v1.3","v1.3b1","v1.4","v1.4b1","v1.4b2","v1.4b3","v1.5","v1.5.1","v1.5.2","v1.5.2a1","v1.5.2a2","v1.5.2b1","v1.5.2b2","v1.5.2c1","v1.5a1","v1.5a2","v1.5a3","v1.5a4","v1.5b1","v1.5b2","v1.6a1","v1.6a2","v2.0","v2.0b1","v2.0b2","v2.0c1","v2.1","v2.1a1","v2.1a2","v2.1b1","v2.1b2","v2.1c1","v2.1c2","v2.2a3","v2.3c1","v2.3c2","v2.4","v2.4a1","v2.4a2","v2.4a3","v2.4b1","v2.4b2","v2.4c1","v2.5","v2.5.1","v2.5.1c1","v2.5.2","v2.5.2c1","v2.5.3","v2.5.3c1","v2.5.4","v2.5.5","v2.5.5c1","v2.5.5c2","v2.5.6","v2.5.6c1","v2.5a0","v2.5a1","v2.5a2","v2.5b1","v2.5b2","v2.5b3","v2.5c1","v2.5c2","v2.6","v2.6.1","v2.6.2","v2.6.2c1","v2.6.3","v2.6.3rc1","v2.6.4","v2.6.4rc1","v2.6.4rc2","v2.6.5","v2.6.5rc1","v2.6.5rc2","v2.6.6","v2.6.6rc1","v2.6.6rc2","v2.6.7","v2.6.8","v2.6.8rc1","v2.6.8rc2","v2.6a1","v2.6a2","v2.6a3","v2.6b1","v2.6b2","v2.6b3","v2.6rc1","v2.6rc2","v2.7","v2.7.1","v2.7.1rc1","v2.7.2","v2.7.2rc1","v2.7.3","v2.7.3rc1","v2.7.3rc2","v2.7.4rc1","v2.7a1","v2.7a2","v2.7a3","v2.7a4","v2.7b1","v2.7b2","v2.7rc1","v2.7rc2","v3.0a1","v3.0a2","v3.0a3","v3.0a4","v3.0a5","v3.0b1","v3.0b2","v3.0b3","v3.0rc1","v3.0rc2","v3.0rc3","v3.1","v3.1.1","v3.1.1rc1","v3.1.2","v3.1.2rc1","v3.1.3","v3.1.3rc1","v3.1.4","v3.1.4rc1","v3.1.5","v3.1.5rc1","v3.1.5rc2","v3.1a1","v3.1a2","v3.1b1","v3.1rc1","v3.1rc2","v3.2","v3.2.1","v3.2.1b1","v3.2.1rc1","v3.2.1rc2","v3.2.2","v3.2.2rc1","v3.2.3","v3.2.3rc1","v3.2.3rc2","v3.2.4","v3.2.4rc1","v3.2.5","v3.2.6","v3.2.6rc1","v3.2a1","v3.2a2","v3.2a3","v3.2a4","v3.2b1","v3.2b2","v3.2rc1","v3.2rc2","v3.2rc3","v3.3.0","v3.3.0a1","v3.3.0a2","v3.3.0a3","v3.3.0a4","v3.3.0b1","v3.3.0b2","v3.3.0rc1","v3.3.0rc2","v3.3.0rc3","v3.3.1","v3.3.1rc1","v3.3.2","v3.3.3","v3.3.3rc1","v3.3.3rc2","v3.3.4","v3.3.4rc1","v3.3.5","v3.3.5rc1","v3.3.5rc2","v3.3.6","v3.3.6rc1","v3.4.0","v3.4.0a1","v3.4.0a2","v3.4.0a3","v3.4.0a4","v3.4.0b1","v3.4.0b2","v3.4.0b3","v3.4.0rc1","v3.4.0rc2","v3.4.0rc3","v3.4.1","v3.4.1rc1","v3.4.2","v3.4.2rc1","v3.4.3","v3.4.3rc1","v3.4.4","v3.4.4rc1","v3.4.5","v3.4.5rc1","v3.4.6","v3.4.6rc1","v3.5.0","v3.5.0a1","v3.5.0a2","v3.5.0a3","v3.5.0a4","v3.5.0b1","v3.5.0b2","v3.5.0b3","v3.5.0b4","v3.5.0rc1","v3.5.0rc2","v3.5.0rc3","v3.5.0rc4","v3.5.1","v3.5.1rc1","v3.5.2","v3.5.2rc1","v3.5.3","v3.5.3rc1","v3.6.0","v3.6.0a1","v3.6.0a2","v3.6.0a3","v3.6.0a4","v3.6.0b1","v3.6.0b2","v3.6.0b3","v3.6.0b4","v3.6.0rc1","v3.6.0rc2","v3.7.0a1","v3.7.0a2","v3.7.0a3","v3.7.0a4"],"database_specific":{"source":"https://github.com/psf/advisory-database/blob/main/advisories/python/PSF-2019-8.json","vanir_signatures":[{"signature_type":"Function","target":{"function":"_get_crl_dp","file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-049250ea","source":"https://github.com/python/cpython/commit/a37f52436f9aa4b9292878b72f3ff1480e2606c3","digest":{"length":968,"function_hash":"219989014326767936029729892163355973394"}},{"signature_type":"Function","target":{"function":"_get_crl_dp","file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-06fb788e","source":"https://github.com/python/cpython/commit/efec7631edf3b9480dc3988c97ffef94df8800da","digest":{"length":968,"function_hash":"219989014326767936029729892163355973394"}},{"signature_type":"Line","target":{"file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-1ad0de05","source":"https://github.com/python/cpython/commit/216a4d83c3b72f4fdcd81b588dc3f42cc461739a","digest":{"line_hashes":["150944590290108346851283876467396238356","259993381335044047126142229462347783579","222564833135202626673479742764430389775","321243705744531378929320671301977857714"],"threshold":0.9}},{"signature_type":"Function","target":{"function":"_get_crl_dp","file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-3e8ada58","source":"https://github.com/python/cpython/commit/06b15424b0dcacb1c551b2a36e739fffa8d0c595","digest":{"length":968,"function_hash":"219989014326767936029729892163355973394"}},{"signature_type":"Line","target":{"file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-3f0b62ac","source":"https://github.com/python/cpython/commit/6c655ce34ae54adb8eef22b73108e22cc381cb8d","digest":{"line_hashes":["150944590290108346851283876467396238356","259993381335044047126142229462347783579","222564833135202626673479742764430389775","321243705744531378929320671301977857714"],"threshold":0.9}},{"signature_type":"Function","target":{"function":"_get_crl_dp","file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-54d8df1c","source":"https://github.com/python/cpython/commit/6c655ce34ae54adb8eef22b73108e22cc381cb8d","digest":{"length":1124,"function_hash":"56826722025034486022894966991026941799"}},{"signature_type":"Line","target":{"file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-56e64daa","source":"https://github.com/python/cpython/commit/a37f52436f9aa4b9292878b72f3ff1480e2606c3","digest":{"line_hashes":["150944590290108346851283876467396238356","259993381335044047126142229462347783579","222564833135202626673479742764430389775","321243705744531378929320671301977857714"],"threshold":0.9}},{"signature_type":"Function","target":{"function":"_get_crl_dp","file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-598c55e7","source":"https://github.com/python/cpython/commit/be5de958e9052e322b0087c6dba81cdad0c3e031","digest":{"length":968,"function_hash":"219989014326767936029729892163355973394"}},{"signature_type":"Function","target":{"function":"_get_crl_dp","file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-61e75fef","source":"https://github.com/python/cpython/commit/216a4d83c3b72f4fdcd81b588dc3f42cc461739a","digest":{"length":968,"function_hash":"219989014326767936029729892163355973394"}},{"signature_type":"Line","target":{"file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-8a8223b9","source":"https://github.com/python/cpython/commit/06b15424b0dcacb1c551b2a36e739fffa8d0c595","digest":{"line_hashes":["150944590290108346851283876467396238356","259993381335044047126142229462347783579","222564833135202626673479742764430389775","321243705744531378929320671301977857714"],"threshold":0.9}},{"signature_type":"Line","target":{"file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-ae029e8b","source":"https://github.com/python/cpython/commit/be5de958e9052e322b0087c6dba81cdad0c3e031","digest":{"line_hashes":["150944590290108346851283876467396238356","259993381335044047126142229462347783579","222564833135202626673479742764430389775","321243705744531378929320671301977857714"],"threshold":0.9}},{"signature_type":"Line","target":{"file":"Modules/_ssl.c"},"signature_version":"v1","deprecated":false,"id":"PSF-2019-8-b5b2270c","source":"https://github.com/python/cpython/commit/efec7631edf3b9480dc3988c97ffef94df8800da","digest":{"line_hashes":["150944590290108346851283876467396238356","259993381335044047126142229462347783579","222564833135202626673479742764430389775","321243705744531378929320671301977857714"],"threshold":0.9}}]}}],"schema_version":"1.7.3"}