The GnuTLS library received a critical security fix andother updates: * CVE-2014-0092: The X.509 certificate verification hadincorrect error handling, which could lead to brokencertificates marked as being valid. * CVE-2009-5138: A verification problem in handling V1certificates could also lead to V1 certificates incorrectlybeing handled. * CVE-2013-2116: The _gnutls_ciphertext2compressedfunction in lib/gnutls_cipher.c in GnuTLS allowed remoteattackers to cause a denial of service (buffer over-readand crash) via a crafted padding length. * CVE-2013-1619: Timing attacks against hashing ofpadding was fixed which might have allowed disclosure ofkeys. (Lucky13 attack).Also the following non-security bugs have been fixed: * gnutls doesn't like root CAs without BasicConstraints. Permit V1 Certificate Authorities properly(bnc#760265) * memory leak in PSK authentication (bnc#835760)