A cleartext leak vulnerability when using XHTML was found in gajim. Upstream bug: https://trac-plugins.gajim.org/ticket/145 Upstream patch: https://trac-plugins.gajim.org/changeset/c7c2e519ed63377bc943dd01c4661b0fe49321ae
Created gajim tracking bugs for this issue: Affects: fedora-all [bug 1390136] Affects: epel-all [bug 1390137]
NOTABUG, because We don't ship the OTR plugin in the package. Users may install the plugin through the GUI. Then Gajim's plugin installer is responsible for notifying the user about plugin updates. Gajim OTR users probably already have the fixed plugin installed.