See tracker for details. The CVE description says it's a directory traversal, but the percona-xtrabackup reference (URL) seems to not be the same issue? Is it?
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=398e7bf822fb1f93466348bfc5d123f92de610e9 commit 398e7bf822fb1f93466348bfc5d123f92de610e9 Author: John Helmert III <ajak@gentoo.org> AuthorDate: 2022-11-24 16:16:28 +0000 Commit: John Helmert III <ajak@gentoo.org> CommitDate: 2022-11-24 16:18:56 +0000 profiles: last rite dev-db/percona-xtrabackup-bin Bug: https://bugs.gentoo.org/849389 Bug: https://bugs.gentoo.org/864367 Bug: https://bugs.gentoo.org/882783 Signed-off-by: John Helmert III <ajak@gentoo.org> profiles/package.mask | 6 ++++++ 1 file changed, 6 insertions(+)