[liberationtech] Security Vulnerability in Pidgin-OTR (Please Upgrade)

[danimoth]

On 17/05/12 at 01:34pm, Douglas Lucas wrote:
> Problem solved. 3.2.0-5 is the backported to Ocelot & Precise bugfix for
> the remote exploit.

You're still assuming that ubuntu packagers know how do it correctly. For
best result, please rely on the work of who create and work every day on his
software (pidgin-otr developers) installing 3.2.1 or compile it yourself by
sources.

Remember debian & random number generator? [1]


[1] http://www.debian.org/security/2008/dsa-1571