http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0645 http://www.debian.org/security/2006/dsa-985
thx, should be fixed with update to 0.3.0. Because no package seems to require libtasn1, I did this version and API jump both in devel and in FC-4.