Amazon Linux AMI Security Advisory: ALAS-2013-250
Advisory Release Date: 2014-09-16 21:55 Pacific
Multiple flaws were found in the way Augeas handled configuration files when updating them. An application using Augeas to update configuration files in a directory that is writable to by a different user (for example, an application running as root that is updating files in a directory owned by a non-root service user) could have been tricked into overwriting arbitrary files or leaking information via a symbolic link or mount point attack. (CVE-2012-0786 , CVE-2012-0787 )
Run yum update augeas to update your system.