Move over Heartbleed – here comes another SSL/TLS bug

Which widely used open source SSL/TLS cryptographic library just recently fixed a critical bug caused by a buffer overflow? (Hint. The software isn’t OpenSSL and the vulnerability isn’t Heartbleed.)
Naked Security – Sophos