kernel: Faulty computation of numberic bounds in the BPF verifier
A security flaw was found in the Linux kernel in the adjustscalarminmaxvals function in kernel/bpf/verifier.c. A faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because this function mishandles 32-bit right shifts. A local unprivileged user cannot...