Ubuntu Security Notice 1982-1 – Ryan Sleevi discovered that Python did not properly handle certificates with NULL characters in the Subject Alternative Name field. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications…. Ubuntu Security Notice 1982-1 – Ryan Sleevi discovered that Python did not properly handle certificates with NULL characters in the Subject Alternative Name field. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications.

Read more http://packetstormsecurity.com/files/123470/USN-1982-1.txt