The following vulnerability was published for gnutls28.
CVE-2024-28834[0]:
| A flaw was found in GnuTLS. The Minerva attack is a cryptographic
| vulnerability that exploits deterministic behavior in systems like
| GnuTLS, leading to side-channel leaks. In specific scenarios, such
| as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can
| result in a noticeable step in nonce size from 513 to 512 bits,
| exposing a potential timing side-channel.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.