Multiple highly critical flaws were foun in FFmpeg. Two of them affect DV decoder. Errors were also found in „vp3_update_thread_context()“, „codec_get_buffer()“, „ff_h263_decode_frame()“, „nsv_read_chunk()“, „ff_h263_decode_frame()“, „decode_mb()“, „smacker_decode_header_tree()“, „read_offs()“ and other functions. Vulnerabilities may be exploited via crafted multimedia files.
Users should upgrade to version 0.10.

Source: Secunia
31.01.2012