Mandriva Linux Security Advisory 2009-070 – senddoc uses temporary files (/tmp/log.obr.4043) in an insecure way which enables local attackers to overwrite arbitrary files by using a symlink attack. This update provides a fix for that vulnerability. Also, this update is a rebuild against (latest) xulrunner 1.9.0.6.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/75601/MDVSA-2009-070.txt
Source: https://packetstormsecurity.com/files/75601/Mandriva-Linux-Security-Advisory-2009-070.html