Pidgin is an GTK Instant Messenger client.
Multiple vulnerabilities have been discovered in Pidgin. Please review the CVE identifiers referenced below for details.
These vulnerabilities allow for arbitrary file retrieval, Denial of Service and arbitrary code execution with the privileges of the user running Pidgin.
There is no known workaround at this time.
All Pidgin users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-im/pidgin-2.10.0-r1"