Gentoo Linux Security Advisory GLSA 200809-13 - R is vulnerable to symlink attacks due to an insecure usage of temporary files. Dmitry E. Oboukhov reported that the javareconf script uses temporary files in an insecure manner. Versions less than 2.7.1 are affected.
7a6492d9f03e324b6a848b1b3fe59e88048ee6ac6f8f6d962b263f5af9b5b70f