Mandrake Security Advisory MDVSA-2009:070 (

The remote host is missing an update to announced via advisory MDVSA-2009:070.
To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.
senddoc uses temporary files (/tmp/log.obr.4043) in a insecure way which enables local attackers to overwrite arbitrary files by using a symlink attack (CVE-2008-4937). This update provides fix for that vulnerability. Update: Further this update is a rebuild against (lastest) xulrunner Affected: 2008.1