Debian Security Advisory DSA 509-1 - Steve Kemp discovered a vulnerability in xatitv, one of the programs in the gatos package. If an administrator removes the default configuration file, a local attacker can escalate to root privileges.
3ce34d6d1e5e9badae4bd01e62d08cce72041031812e1163569eaca982b69ca5