Last week the security team quietly closed a small but surprising gap: fpre005 — a floating-point precision edge-case that had been slipping through unit tests and fuzzers for months. The patch is deceptively small in lines of code but meaningful in impact: it fixes a rare mismatch in how two code paths round intermediate values before conversion, eliminating incorrect results in a narrow set of inputs and removing a potential vector for downstream logic errors.
In the patched version, if a CRC mismatch is detected, the system does not panic. Instead, it rolls back to a protected "Golden Image" stored in a write-protected sector of the NOR flash. This allows the device to boot in a limited-functionality "safe mode" to download the full fix over-the-air. fpre005 patched
Some users report that version 2.1.4 of the affected library does not exhibit FPRE005. If you have a snapshot, roll back and disable automatic updates until a real patch is available. Last week the security team quietly closed a