Debian Linux Security Advisory 4029-1 - It was discovered that the pg_ctlcluster, pg_createcluster and pg_upgradecluster commands handled symbolic links insecurely which could result in local denial of service by overwriting arbitrary files.
0c8bf318ea5d93760e0b25517974026286500b75c5b08afc1ea8612291b3ef43