Recently a security issue (CVE-2017-2640) was fixed in libpurple: https://www.pidgin.im/news/security/?id=109
SecurityFocus and Ubuntu say the vulnerability impact is arbitrary code execution on the client. Is the Adium team aware of this issue? Is there a response in the works? Does the Adium team have processes in place for handling and responding to security errata in libpurple? I'd be happy to help with any or all of the above. Thanks, Eryt