Mandriva Linux Security Advisory 2009-335 – MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated by lol-ffplay.ogm, different vectors than CVE-2007-6718. Packages for 2008.0 are being provided due to extended support for Corporate products. This update provides a solution to this vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/84015/MDVSA-2009-335.txt
Source: https://packetstormsecurity.com/files/84015/Mandriva-Linux-Security-Advisory-2009-335.html