mindi, a program for creating boot/root disks, does not take
appropriate security precautions when creating temporary files. This
bug could potentially be exploited to overwrite arbitrary files with
the privileges of the user running mindi.
For the stable distribution (woody) this problem has been fixed in
version 0.58.r5-1woody1.
For the unstable distribution (sid) this problem will be fixed soon.
Refer to Debian bug #203825.
We recommend that you update your mindi package.