checkinstall 1.6.2, when used to create a package that contains a symlink, may trigger the creation of a mode 0777 executable file.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25031
Reference (s):
- https://bugs.launchpad.net/ubuntu/+source/checkinstall/+bug/1861281