More information <a href="http://permalink.gmane.org/gmane.ietf.tls/8822" rel="nofollow">http://permalink.gmane.org/gmane.ietf.tls/8822</a><p>It looks like it uses a chosen plain text attack that exploits the multiplexing of multiple requests over the same SSL socket level connection that by design share the same key.