Vixie Cron crontab Privilege Lowering Failure Vulnerability
Conectiva has released an advisory CLA-2003:757 as an update to the original advisory CLSA-2003:628 that was released to address this issue. Further details relating to the application of fixes is available in the referenced advisory. Fix is linked below.
Several vendors have released fixed upgrades:
Paul Vixie Vixie Cron 3.0 pl1
Paul Vixie Vixie Cron 3.0.1