[原文]imake in NetBSD before 2.0.3, NetBSD-current before 12 September 2005, certain versions of X.Org, and certain versions of XFree86 allows local users to overwrite arbitrary files via a symlink attack on the temporary file for the file.0 target, which is used for a pre-formatted manual page.
NetBSD contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the imake program creating Makefiles in the /tmp directory insecurely. It is possible for a user to use a symlink style attack to overwrite arbitrary files, resulting in a loss of integrity.
Upgrade to version 2.0.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.