rpm2targz uses the mcookie app for tmpdir file handling. This mcookie program is ment to be used on files vs dirs and rpm2targz is using it for dir handling without really any error checking. I think all of that can lead us to some pretty nice race condition bugs. I'm not sure if this should be classed as a security problem or not so I'm assigning it to you for now with secuirty on the CC:
Created attachment 61287 [details, diff] rpm2targz.diff Attached local patch I'm using now.
thanks for the patch solar, i've committed it to rpm2targz-9.0-r3. security hasn't said anything about this being a major problem, so i've marked it ~x86 for now, but i'll fast track it if security thinks it is necessary.
i'm marking the new version of rpm2targz stable for x86. closing for now.