Mandriva Linux Security Advisory – Integer overflow in X MultiMedia System (xmms) 1.2.10, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which triggers memory corruption. Integer underflow in X MultiMedia System (xmms) 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which results in a stack- based buffer overflow.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/55494/MDKSA-2007-071.txt
Source: https://packetstormsecurity.com/files/55494/Mandriva-Linux-Security-Advisory-2007.071.html