Also, you really want to use the latest 4.x, which is 4.2.0, there’s an important TLS security fix there.

I have read about the bug. Is it as bad as it is described even when using tls client auth ?