The feh_unique_filename function in utils.c in feh 1.11.2 and earlier might allow local users to create arbitrary files via a symlink attack on a /tmp/feh_ temporary file, a different vulnerability than CVE-2011-0702.
Gentoo Linux Security Advisory 201110-8 - Multiple vulnerabilities were found in feh, the worst of which leading to remote passive code execution. Versions less than 1.12 are affected.