Hello, thanks for all the details.
I think that it is worth mentioning that only newly deployed contracts starting with the EOF header are affected, because the Aave protocol actually deploys new contracts when creating new markets (aTokens and debt tokens proxies).