Mandriva Linux Security Advisory 2010-068 – The xmlrpc extension in PHP 5.3.1 does not properly handle a missing methodName element in the first argument to the xmlrpc_decode_request function, which allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) and possibly have unspecified other impact via a crafted argument. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/87702/MDVSA-2010-068.txt
Source: https://packetstormsecurity.com/files/87702/Mandriva-Linux-Security-Advisory-2010-068.html