CVE-2009-4005 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-4005): The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read.
@Kernel: Please back-port this patch in the next 2.6.31 release.