CVE-2014-8627 (weak signature negotiation)
A mistake resulted in servers negotiating the lowest common hash from
signature_algorithms extension in TLS 1.2.
CVE-2014-8628 (memory leaks)
Two issues were found that result in remotely triggerable memory leaks
when parsing crafted ClientHello messages or X.509 certificates.