Security team which found the Heartbleed flaw has discovered a vulnerability in the open-source GnuTLS library. Although the system is not as widely deployed as OpenSSL, it is part of many Linux distributions. An attacking server can use this flaw to send an extremely value of session ID and trigger a buffer overflow in a connecting TLS/SSL client using Gnu/TLS.