pidgin-otr 4.0.2 fixes a heap use after free bug. This is already patched in the 4.0.1-r1 ebuild, but 4.0.2 is also already in the tree, so I'd prefer we stabilize the new release.
Arches please test and mark stable =x11-plugins/pidgin-otr-4.0.2 eith target KEYWORDS: amd64 ppc ppc64 sparc x86
amd64 stable
x86 stable
ppc stable
ppc64 stable
sparc stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one.
commit c7e3269c2bd2d9e206f4d1378d4b0a5fd4007a7f Author: Lars Wendler <polynomial-c@gentoo.org> Date: Sun Mar 20 18:17:07 2016 x11-plugins/pidgin-otr: Security cleanup (bug #576916). Package-Manager: portage-2.2.28 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
This issue was resolved and addressed in GLSA 201701-10 at https://security.gentoo.org/glsa/201701-10 by GLSA coordinator Thomas Deutschmann (whissi).