CVE-2015-1865

fts.c in coreutils 8.4 allows local users to delete arbitrary files.