CVE-2021-40506

Name of the Vulnerable Software and Affected Versions OR1200 (aka OpenRISC 1200) processor versions 2011-09-10 through 2015-11-11

Description An issue in the ALU unit of the processor causes the overflow flag not to be updated for the msb and mac instructions, resulting in an incorrect value in the overflow flag. This can lead to corruption in execution for any software that relies on this flag.

Recommendations For versions 2011-09-10 through 2015-11-11, consider modifying software to not rely on the overflow flag for the msb and mac instructions until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.