Gentoo Linux Security Advisory 201402-10 - An insecure temporary file usage has been reported in PulseAudio, possibly allowing symlink attacks. Versions less than 0.9.22 are affected.
72bb7817cd424b00898ccbf1acab0cbd8a27f3dcc7bdef81ade11ba12d1cb151
Debian Linux Security Advisory 2017-1 - Dan Rosenberg discovered that the PulseAudio sound server creates a temporary directory with a predictable name. This allows a local attacker to create a Denial of Service condition or possibly disclose sensitive information to unprivileged users.
68d7df806fbd3422841194b7a54354db4bd82c01fbed403c2b50d62a7f202770