Re: New CVE entries this week
Hmm, no; that is what original code did and what is known not to workCVE-2021-3600: eBPF 32-bit source register truncation on div/modI took a look into this. Apparently 4.14 and 4.19 is affected. (
for reasons I don't fully understand.
Anyway, I asked on the lists, and according to Thadeu Lima de Souza
Cascardo Ubuntu did some work on it and is likely to do some more.
Oh, and we may want watch CVE-2021-3444, it is apparently related and
not yet fixed in 4.19.
DENX Software Engineering GmbH, Managing Director: Wolfgang Denk
HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany