Do we have any Courier maintainers? courier-authlib is vulnerable to CVE-2009-3736 (internal copy of libltdl) [1]
[1] http://bugs.gentoo.org/show_bug.cgi?id=254062 It seems a bit too important package to be masked, but that's what will happen if noone cares