Please remove the following ebuilds as they are vulnerable to GLSA 200704-18 ( http://www.gentoo.org/security/en/glsa/glsa-200704-18.xml ) : =net-mail/courier-imap-4.0.1 =net-mail/courier-imap-4.0.4 Note that other (unstable) atoms might be missing from this list that are vulnerable to the same GLSA. Please remove those as well.
Since it has been 2 months, I removed: courier-imap-4.0.1.ebuild courier-imap-4.0.1-r1.ebuild courier-imap-4.0.1-r2.ebuild courier-imap-4.0.4.ebuild This does break the stable tree for sh, so I filed bug 279475