Roel Kluin

**Name of the Vulnerable Software and Affected Versions** openSUSE kernel-ps3-debuginfo versions (affected versions not specified) openSUSE kernel-ps3-debugsource versions (affected versions not specified) Linux kernel versions prior to 2.6.32-rc7 **Description** The issue affects the Linux kernel and openSUSE operating system, involving multiple vulnerabilities in the kernel-ps3-debuginfo and kernel-ps3-debugsource packages. These vulnerabilities can be exploited remotely, potentially leading to breaches of confidentiality, integrity, and availability of protected information. Specifically, the `collect rx frame` function in `drivers/isdn/hisax/hfc usb.c` is vulnerable to a crafted HDLC packet that arrives over ISDN, triggering a buffer under-read. **Recommendations** For openSUSE kernel-ps3-debuginfo and kernel-ps3-debugsource, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Linux kernel versions prior to 2.6.32-rc7, update to version 2.6.32-rc7 or later to resolve the issue. As a temporary workaround, consider restricting access to the `collect rx frame` function in `drivers/isdn/hisax/hfc usb.c` until a patch is available.