Eric Romang discovered that heartbeat created temporary files in an
insecure manner This could allow a symlink attack to create or
overwrite arbitrary files with root privileges as soon as heartbeat is
started ...
The security update DSA 761-1 for heartbeat contained a bug which caused a
regression This problem is corrected with this advisory For
completeness below please find the original advisory text:
Eric Romang discovered several insecure temporary file creations in
heartbeat, the subsystem for High-Availability Linux
For the old stable distrib ...