CVE-2011-2533 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2533): The configure script in D-Bus (aka DBus) 1.2.x before 1.2.28 allows local users to overwrite arbitrary files via a symlink attack on an unspecified file in /tmp/.
No such ebuild in the tree.
We had DBUS 1.2.x stable some time ago, so we might still need a GLSA; sorry for the incorrect whiteboard.
Added to pending GLSA request.
This issue was resolved and addressed in GLSA 201110-14 at http://security.gentoo.org/glsa/glsa-201110-14.xml by GLSA coordinator Stefan Behte (craig).