Debian Linux Security Advisory 3408-1 - It was discovered that GnuTLS, a library implementing the TLS and SSL protocols, incorrectly validates the first byte of padding in CBC modes. A remote attacker can possibly take advantage of this flaw to perform a padding oracle attack.
34b8d58d97aa8a0f0267eb11b913d08c670a42fbf209c0304872f17c07ad3d02