Ubuntu Security Notice 2597-1 - A race condition between chown() and execve() was discovered in the Linux kernel. A local attacker could exploit this race by using chown on a setuid-user-binary to gain administrative privileges.
d0d7003df0fa18a33c041a905a2eb7307545321e7ce264bdbf46257709a12e9f