netpbm 9.25 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files.
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A810
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A804
https://exchange.xforce.ibmcloud.com/vulnerabilities/14874
http://www.securityfocus.com/bid/9442
http://www.redhat.com/support/errata/RHSA-2004-031.html
http://www.redhat.com/support/errata/RHSA-2004-030.html
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:011
http://www.kb.cert.org/vuls/id/487102