GNU Ed Symlink Vulnerability
Affected vendors, including Mandrake, Conectiva, Debian, RedHat, Trustix and others have released new, fixed versions of the ed package.
Gentoo Linux has released advisory GLSA 200410-07 to address this issue. Users of affected packages are urged to execute the following commands with superuser privileges:
emerge -pv ">=sys-apps/ed-0.2-r4"
Please see the referenced advisory for further information.
GNU Ed 2.15
GNU Ed 2.18 .0