The f2c translator in the f2c package 3.1 allows local users to read arbitrary files via a symlink attack on temporary files.
http://www.securityfocus.com/bid/12380
http://www.gentoo.org/security/en/glsa/glsa-200501-43.xml
http://www.debian.org/security/2005/dsa-661
http://securitytracker.com/id?1013028
http://secunia.com/advisories/14067