It's not actually round 2, but more like round 5 or something, because Chris has been publishing an awful lot of these:
https://scarybeastsecurity.blogspot.com/2016/12/redux-compromising-linux-usi...
He shows how to exploit tracker-extract (hopefully mitigated by the new seccomp sandbox, thanks Carlos!), gnome-video-thumbnailer, and totem itself. Guess these are just going to keep on coming.
It's actually very refreshing to know that somebody besides the bad guys is finally looking at our code....
Michael