Ohai, On 06/01/2014 03:57 PM, Aaron Zauner wrote: > :/ > > https://bugzilla.redhat.com/show_bug.cgi?id=1101932 This seems to work, wrote a short PoC: https://github.com/azet/CVE-2014-3466_PoC There's a pretty good analysis of the bug: http://radare.today/technical-analysis-of-the-gnutls-hello-vulnerability/ Aaron