Ubuntu Security Notice USN-746-1 – It was discovered that the 4xm demuxer in xine-lib did not correctly handle a large current_track value in a 4xm file, resulting in an integer overflow. If a user or automated system were tricked into opening a specially crafted 4xm movie file, an attacker could crash xine-lib or possibly execute arbitrary code with the privileges of the user invoking the program.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/76111/USN-746-1.txt
Source: https://packetstormsecurity.com/files/76111/Ubuntu-Security-Notice-746-1.html