CVE-2012-6535 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6535): DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDroid, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted DjVu (aka .djv) file. Cleanup required.
Cleanup done. GLSA request filed.
This issue was resolved and addressed in GLSA 201402-13 at http://security.gentoo.org/glsa/glsa-201402-13.xml by GLSA coordinator Mikle Kolyada (Zlogene).