Debian Linux Security Advisory 2017-1 – Dan Rosenberg discovered that the PulseAudio sound server creates a temporary directory with a predictable name. This allows a local attacker to create a Denial of Service condition or possibly disclose sensitive information to unprivileged users.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/87315/dsa-2017-1.txt
Source: https://packetstormsecurity.com/files/87315/Debian-Linux-Security-Advisory-2017-1.html