glusterfs is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
rhn.redhat.com/errata/RHSA-2012-1456.html
www.securityfocus.com/bid/56522
www.securitytracker.com/id?1027756
access.redhat.com/errata/RHSA-2012:1456
access.redhat.com/security/cve/CVE-2012-4417
access.redhat.com/security/updates/classification/#low
bugzilla.redhat.com/show_bug.cgi?id=840122
bugzilla.redhat.com/show_bug.cgi?id=855913
bugzilla.redhat.com/show_bug.cgi?id=856341
bugzilla.redhat.com/show_bug.cgi?id=856673
bugzilla.redhat.com/show_bug.cgi?id=859173
bugzilla.redhat.com/show_bug.cgi?id=863907
bugzilla.redhat.com/show_bug.cgi?id=866758
bugzilla.redhat.com/show_bug.cgi?id=873380
bugzilla.redhat.com/show_bug.cgi?id=874051
exchange.xforce.ibmcloud.com/vulnerabilities/80074
rhn.redhat.com/errata/RHSA-2012-1456.html