CVE-2005-4839
PureTLS before 0.9b5 does not clear optional Extensions and Algorithm.Parameters values before parsing, which might trigger an information leak of values from earlier certificates.
Date published : 2007-04-30
http://www1.ietf.org/mail-archive/web/tls/current/msg00229.html