Debian: 2697-1: gnutls26: out-of-bounds array read

LinuxSecurity.com: It was discovered that a malicious client could crash a GNUTLS server and vice versa, by sending TLS records encrypted with a block cipher which contain invalid padding. [More...]