upstream bug report: https://issues.rpath.com/browse/RPL-987 A weakness in the rMake build tool could allow for a local user root privilege escalation.
Note that app-admin/rmake has never had a stable version in portage, so a GLSA is not necessary.
This issue has been assigned CVE-2007-0536
rMake 1.0.4 has been released to address this issue.
fixed
btw, my update also fixes upstream bug https://issues.rpath.com/browse/RPL-1002