The security issue is caused due to the ax25d daemon not properly checking the return value when dropping privileges, which can be exploited to perform certain actions with escalated privileges.
Looks like upstream has a fix in their CVS, but I do not see a new release.
Thanks for reporting. Fixed by applying the patch from upstream CVS. +*ax25-tools-0.0.10_rc2-r1 (30 Aug 2011) + + 30 Aug 2011; Thomas Beierlein <tomjbe@gentoo.org> + +ax25-tools-0.0.10_rc2-r1.ebuild, + +files/ax25-tools-0.0.10_rc2-cve-2011-2910.patch, metadata.xml: + Fix for CVE-2011-2910. see Bug #379293 +