Gentoo Linux Security Advisory 201009-2 – Insecure permission handling in maildrop might allow local attackers to elevate their privileges. Christoph Anton Mitterer reported that maildrop does not properly drop its privileges when run as root. Versions less than 2.4.2 are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/93586/glsa-201009-02.txt
Source: https://packetstormsecurity.com/files/93586/Gentoo-Linux-Security-Advisory-201009-2.html