Sam Hocevar

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in a crash, by using a crafted image. This has been demonstrated with a specific test case. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** rinetd versions prior to 0.62 **Description** The issue is related to the `handleAccept` function in rinetd, which does not properly resize the connection list when it becomes full and sets an array index incorrectly. This allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large number of connections. Additionally, there are multiple vulnerabilities in the rinetd package that can lead to breaches of confidentiality, integrity, and availability of protected information, and these vulnerabilities can be exploited remotely. **Recommendations** For versions prior to 0.62, update to version 0.62 or later to resolve the issue. As a temporary workaround, consider restricting the number of connections to prevent the connection list from becoming full.