This seems to fix the security problem with '\0' in domain names which was also present in openssl and nss. (CVE-2010-1192) (The bundled changelog does only beat around the bush.)
82e4f9e5d1