Mandriva Linux Security Advisory – A vulnerability was found in the OCSP search functionality in stunnel that could allow a remote attacker to use a revoked certificate that would be successfully authenticated by stunnel. This flaw only concerns users who have enabled OCSP validation in stunnel. The updated packages have been patched to correct this issue.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/69085/MDVSA-2008-168.txt
Source: https://packetstormsecurity.com/files/69085/Mandriva-Linux-Security-Advisory-2008-168.html