CVE-2008-5138 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-5138): passwdehd in libpam-mount 0.43 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/passwdehd.##### temporary file.
According to the author, this has changed in 0.49. I just removed the old 0.48 ebuild, but else we should be fine.