As seen in GLSA 200703-03 (http://www.gentoo.org/security/en/glsa/glsa-200703-03.xml) CVE-2007-0897 CVE-2007-0898 Shouldn't we mask/patch 0.90?
I fail to see what needs to be fixed, as mentioned in the GLSA 0.90 is _not_ vulnerable. If there is something that I've overlooked feel free to reopen. *** This bug has been marked as a duplicate of bug 167201 ***
Damn. I should sleep more; I read <= vulnerable. Sorry! :(