xine allows user-assisted attackers to cause a denial of service (application crash) via a crafted OGG file, as demonstrated by lol-ffplay.ogg.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3231)