Gentoo Linux Security Advisory 201612-35 – A vulnerability in XStream may allow remote attackers to execute arbitrary code. Versions less than 1.4.8-r1 are affected.