Mandriva Linux Security Advisory 2009-204 - Integer overflow in the wxImage::Create function in src/common/image.cpp in wxWidgets 2.8.10 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted JPEG file, which triggers a heap-based buffer overflow.
fd411e86c0abb62e49dcbb06a9bb371a4c10151d6d6cbe04dfad140d75c10b0a