Mandriva Linux Security Advisory 2009-343 – acpid 1.0.4 sets an unrestrictive umask, which might allow local users to leverage weak permissions on /var/log/acpid, and obtain sensitive information by reading this file or cause a denial of service by overwriting this file, a different vulnerability than CVE-2009-4033. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. This update provides a solution to this vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/84400/MDVSA-2009-343.txt
Source: https://packetstormsecurity.com/files/84400/Mandriva-Linux-Security-Advisory-2009-343.html