CVE-2005-4839 Information

Description

PureTLS before 0.9b5 does not clear optional Extensions and Algorithm.Parameters values before parsing which might trigger an information leak of values from earlier certificates.

Reference

http://www.rtfm.com/puretls/ http://www1.ietf.org/mail-archive/web/tls/current/msg00229.html