Mandriva Linux Security Advisory 2009-297 – The ffmpeg lavf demuxer allows user-assisted attackers to cause a denial of service (application crash) via a crafted GIF file. FFmpeg 0.4.9, as used by MPlayer, allows context-dependent attackers to cause a denial of service (memory consumption) via unknown vectors, aka a Tcp/udp memory leak. Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference. The updated packages fix this issue.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/82686/MDVSA-2009-297.txt
Source: https://packetstormsecurity.com/files/82686/Mandriva-Linux-Security-Advisory-2009-297.html