CVE-2008-4993 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4993): qemu-dm.debug in Xen 3.2.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/args temporary file.
I accidently search for qemu, not xen (because of the script's name) and didn't see #235805 first. Sorry! *** This bug has been marked as a duplicate of bug 235805 ***