Mandrake Security Advisory MDVSA-2009:027 (cups)

The remote host is missing an update to cups announced via advisory MDVSA-2009:027.
To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.
A vulnerability has been discovered in CUPS shipped with Mandriva Linux which allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pdf.log temporary file (CVE-2009-0032). The updated packages have been patched to prevent this. Affected: 2009.0