Debian DSA-3408-1 : gnutls26 - security update
It was discovered that GnuTLS, a library implementing the TLS and SSL protocols, incorrectly validates the first byte of padding in CBC modes. A remote attacker can possibly take advantage of this flaw to perform a padding oracle attack. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...