Hello, today's releases of GnuTLS 3.7.9 and 3.8.0 fix "a Bleichenbacher oracle in the TLS RSA key exchange.". Details here: https://gitlab.com/gnutls/gnutls/-/issues/1050 3.7.9 is basically a single-bugfix release, since the tarball publication was delayed I had uploaded a patched 3.7.8-5 instead to sid. cu Andreas