Gentoo Linux Security Advisory GLSA 200806-05 - Mamoru Tasaka discovered that filenames of the image archives are not properly sanitized before being passed to decompression utilities like unrar and unzip, which use the system() libc library call. Versions less than 0.9.17 are affected.
f0389f08727a4eb93ec2b33695b92b773c6bca30b1f1698c8c6dd917319a2e64