perl-MDK-Common 1.1.11 and 1.1.24, 1.2.9 through 1.2.14, and possibly other versions, in Mandriva Linux does not properly handle strings when writing them to configuration files, which allows attackers to gain privileges via "special characters" in unspecified vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/49220
http://www.vupen.com/english/advisories/2009/0688
http://www.securityfocus.com/bid/34089
http://www.mandriva.com/security/advisories?name=MDVSA-2009:072