GnuTLS incorrectly validates the first byte of padding in CBC modes
CVE-2015-8313 (Candidate) is related to these bugs: