This bug was fixed in the package linux - 5.8.0-53.60
--------------- linux (5.8.0-53.60) groovy; urgency=medium
* CVE-2021-3491 - io_uring: fix provide_buffers sign extension - io_uring: fix overflows checks in provide buffers - SAUCE: proc: Avoid mixing integer types in mem_rw() - SAUCE: io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers
* CVE-2021-3490 - bpf: Fix a verifier failure with xor - SAUCE: bpf: verifier: fix ALU32 bounds tracking with bitwise ops
* CVE-2021-3489 - SAUCE: bpf: ringbuf: deny reserve of buffers larger than ringbuf - SAUCE: bpf: prevent writable memory-mapping of read-only ringbuf pages
-- Stefan Bader <email address hidden> Thu, 06 May 2021 07:43:20 +0200
This bug was fixed in the package linux - 5.8.0-53.60
---------------
linux (5.8.0-53.60) groovy; urgency=medium
* CVE-2021-3491
- io_uring: fix provide_buffers sign extension
- io_uring: fix overflows checks in provide buffers
- SAUCE: proc: Avoid mixing integer types in mem_rw()
- SAUCE: io_uring: truncate lengths larger than MAX_RW_COUNT on provide
buffers
* CVE-2021-3490
- bpf: Fix a verifier failure with xor
- SAUCE: bpf: verifier: fix ALU32 bounds tracking with bitwise ops
* CVE-2021-3489
- SAUCE: bpf: ringbuf: deny reserve of buffers larger than ringbuf
- SAUCE: bpf: prevent writable memory-mapping of read-only ringbuf pages
-- Stefan Bader <email address hidden> Thu, 06 May 2021 07:43:20 +0200