Mandriva Linux Security Advisory 2009-220 – A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack. Related to CVE-2009-2625. This update fixes this vulnerability. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/84820/MDVSA-2009-220-1.txt
Source: https://packetstormsecurity.com/files/84820/Mandriva-Linux-Security-Advisory-2009-220.html