[v3.1] python: incorrect wildcard matching rules (CVE-2013-7440)
It was found that Python’s SSL hostname matching rules did not conform to RFC 6125 when the hostname included wildcards.
Reference: http://www.openwall.com/lists/oss-security/2015/05/21/12
https://bugzilla.redhat.com/show\_bug.cgi?id=CVE-2013-7440
(from redmine: issue id 4322, created on 2015-06-15, closed on 2015-08-05)
- Relations:
- parent #4319 (closed)