Ubuntu Security Notice 516-1 - Paul Martin discovered that xfs_fsr creates a temporary directory with insecure permissions. This allows a local attacker to exploit a race condition in xfs_fsr to read or overwrite arbitrary files on xfs filesystems.
82aac570fccbd6c363ec09ea8a3e0884bbbacb593c990708560f2b4cd266e2bd