It was reported [1] that ibutils 1.5.7 suffered from a flaw due to improper handling of files in the /tmp directory. This makes ibutils vulnerable to symlink attacks, which could be used to overwrite arbitrary files on the system. [1] http://seclists.org/fulldisclosure/2013/Mar/87
This issue has been assigned CVE-2013-1894 via: http://seclists.org/oss-sec/2013/q1/741
This was actually assigned CVE-2013-2561 before the above assignment: http://www.openwall.com/lists/oss-security/2013/03/19/8 CVE-2013-1894 needs to be rejected.
Statement: (none)
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2013:1661 https://rhn.redhat.com/errata/RHSA-2013-1661.html