CVE-2012-3355

(1) AlbumTab.py, (2) ArtistTab.py, (3) LinksTab.py, and (4) LyricsTab.py in the Context module in GNOME Rhythmbox 0.13.3 and earlier allows local users to execute arbitrary code via a symlink attack on a temporary HTML template file in the /tmp/context directory.

Date published : 2012-07-17

http://www.securityfocus.com/bid/54186

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=616673