CVE-2016-3992 (cronic, debian_linux, leap, opensuse)
cronic before 3 allows local users to write to arbitrary files via a symlink attack on a (1) cronic.out.$$, (2) cronic.err.$$, or (3) cronic.trace.$$ file in /tmp.
Source: CVE-2016-3992 (cronic, debian_linux, leap, opensuse)