Dr. Volker Zell, gnutls 2.8.6 is susceptible to CVE-2009-3555. This has been fixed since 2.10.0, but the current stable releases are 2.12.11 (ABI-compatible with 2.8.6) and 3.0.4 (which breaks ABI compatibility). For now, please release 2.12.11 ASAP for all the apps currently dependent on libgnutls26. Yaakov