Mr. Hornik has discovered vulnerability SA-20031006 in slocate package version 2.6. This is proof that exploitation is possible and so unauthorized users may run arbitraty code under slocate group privileges and so read global slocate database. Enjoy IT !