Infosecurity – A crypto error in the GnuTLS library has made hundreds of software packages vulnerable to fake security certificates.
GnuTLS provides support for cryptographic algorithms like SSL and for protocols such as Transport Layer Security (TLS). An open-source offering, it’s used by a wide range of desktop and server products, including Linux, Debian and Ubuntu distributions to verify digital certificates. Its widespread deployment is an Achilles heel in the case of a flaw being uncovered, which is exactly what’s happened.