Mandriva Linux Security Advisory 2010-124 – The pa_make_secure_dir function in core-util.c in PulseAudio 0.9.10 and 0.9.19 allows local users to change the ownership and permissions of arbitrary files via a symlink attack on a /tmp/.esd-##### temporary file. This update fixes this issue.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/91015/MDVSA-2010-124.txt
Source: https://packetstormsecurity.com/files/91015/Mandriva-Linux-Security-Advisory-2010-124.html