Skip to content
Snippets Groups Projects
Unverified Commit c7ec7808 authored by Victor Stinner's avatar Victor Stinner Committed by GitHub
Browse files

[3.7] gh-97612: Fix shell injection in get-remote-certificate.py (#97613) (#97634) 


Fix a shell code injection vulnerability in the
get-remote-certificate.py example script. The script no longer uses a
shell to run "openssl" commands. Issue reported and initial fix by
Caleb Shortt.

Remove the Windows code path to send "quit" on stdin to the "openssl
s_client" command: use DEVNULL on all platforms instead.

Co-authored-by: default avatarCaleb Shortt <caleb@rgauge.com>
(cherry picked from commit 83a0f44f)
parent fd82f16c
Branches
Tags
No related merge requests found
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment