-
grub2 (2.02~beta2-36ubuntu3.32) xenial; urgency=medium
* Cherrypick upstream commit to add support for
R_AARCH64_ADR_PREL_PG_HI21, R_AARCH64_ADD_ABS_LO12_NC,
R_AARCH64_LDST64_ABS_LO12_NC relocations in grub-install / mkimage to
allow generating and installing grub.efi from one-grub modules. LP:
#1926748
grub2 (2.02~beta2-36ubuntu3.31) xenial; urgency=medium
[ Dimitri John Ledkov & Steve Langasek ]
* Relax dependencies to allow grub-efi be installed with later versions
of grub-efi-amd64. Stop building grub-efi-amd64|arm64{-bin,dbg}
packages, now provided by src:grub2-unsigned. LP: #1915536
[ Dimitri John Ledkov ]
* Cherrypick 2.02+dfsg1-5 patch for x86-64: Treat R_X86_64_PLT32 as
R_X86_64_PC32 to allow processing 2.04 grub modules built with newer
binutils.
-- Dimitri John Ledkov <email address hidden> Fri, 30 Apr 2021 13:33:21 +0100
-
grub2 (2.02~beta2-36ubuntu3.31) xenial; urgency=medium
[ Dimitri John Ledkov & Steve Langasek ]
* Relax dependencies to allow grub-efi be installed with later versions
of grub-efi-amd64. Stop building grub-efi-amd64|arm64{-bin,dbg}
packages, now provided by src:grub2-unsigned. LP: #1915536
[ Dimitri John Ledkov ]
* Cherrypick 2.02+dfsg1-5 patch for x86-64: Treat R_X86_64_PLT32 as
R_X86_64_PC32 to allow processing 2.04 grub modules built with newer
binutils.
-- Dimitri John Ledkov <email address hidden> Wed, 24 Feb 2021 19:59:33 +0000
-
grub2 (2.02~beta2-36ubuntu3.29) xenial; urgency=medium
* Avoid "EFI stub: FIRMWARE BUG" message when booting >= 5.7 kernels
on arm64 by setting the image base address before jumping to the
PE/COFF entry point LP: #1900774
* Fix tftp timeouts when fetching large files. LP: #1900773
-- dann frazier <email address hidden> Fri, 13 Nov 2020 18:03:44 -0700
-
grub2 (2.02~beta2-36ubuntu3.28) xenial; urgency=medium
* debian/patches/ubuntu-flavour-order.patch:
- Add a (hidden) GRUB_FLAVOUR_ORDER setting that can mark certain kernel
flavours as preferred, and specify an order between those preferred
flavours (LP: #1882663)
* debian/patches/ubuntu-recovery-dis_ucode_ldr.patch:
- Pass dis_ucode_ldr to kernel for recovery mode (LP: #1831789)
-- Julian Andres Klode <email address hidden> Mon, 24 Aug 2020 10:54:59 +0200
-
grub2 (2.02~beta2-36ubuntu3.27) xenial; urgency=medium
* debian/postinst.in: Avoid calling grub-install on upgrade of the grub-pc
package, since we cannot be certain that it will install to the correct
disk and a grub-install failure will render the system unbootable.
LP: #1889556.
-- Steve Langasek <email address hidden> Thu, 30 Jul 2020 21:27:00 -0700
-
grub2 (2.02~beta2-36ubuntu3.26) xenial; urgency=medium
[ Chris Coulson ]
* SECURITY UPDATE: Heap buffer overflow when encountering commands that
cannot be tokenized to less than 8192 characters.
- 0082-yylex-Make-lexer-fatal-errors-actually-be-fatal.patch: Make
fatal lexer errors actually be fatal
- CVE-2020-10713
* SECURITY UPDATE: Multiple integer overflow bugs that could result in
heap buffer allocations that were too small and subsequent heap buffer
overflows when handling certain filesystems, font files or PNG images.
- 0083-safemath-Add-some-arithmetic-primitives-that-check-f.patch: Add
arithmetic primitives that allow for overflows to be detected
- 0084-calloc-Make-sure-we-always-have-an-overflow-checking.patch:
Make sure that there is always an overflow checking implementation
of calloc() available
- 0085-calloc-Use-calloc-at-most-places.patch: Use calloc where
appropriate
- 0086-malloc-Use-overflow-checking-primitives-where-we-do-.patch: Use
overflow-safe arithmetic primitives when performing allocations
based on the results of operations that might overflow
- 0094-hfsplus-fix-two-more-overflows.patch: Fix integer overflows in
hfsplus
- 0095-lvm-fix-two-more-potential-data-dependent-alloc-over.patch: Fix
more potential integer overflows in lvm
- CVE-2020-14308, CVE-2020-14309, CVE-2020-14310, CVE-2020-14311
* SECURITY UPDATE: Use-after-free when executing a command that causes
a currently executing function to be redefined.
- 0092-script-Remove-unused-fields-from-grub_script_functio.patch:
Remove unused fields from grub_script_function
- 0093-script-Avoid-a-use-after-free-when-redefining-a-func.patch:
Avoid a use-after-free when redefining a function during execution
- CVE-2020-15706
* SECURITY UPDATE: Integer overflows that could result in heap buffer
allocations that were too small and subsequent heap buffer overflows
during initrd loading.
- 0105-linux-Fix-integer-overflows-in-initrd-size-handling.patch: Fix
integer overflows in initrd size handling
- 0106-efilinux-Fix-integer-overflows-in-grub_cmd_initrd.patch: Fix
integer overflows in linuxefi grub_cmd_initrd
- CVE-2020-15707
* Various fixes as a result of code review and static analysis:
- 0087-iso9660-Don-t-leak-memory-on-realloc-failures.patch: Fix a
memory leak on realloc failures when processing symbolic links
- 0088-font-Do-not-load-more-than-one-NAME-section.patch: Fix a
memory leak when processing font files with more than one NAME
section
- 0089-gfxmenu-Fix-double-free-in-load_image.patch: Zero self->bitmap
after it is freed in order to avoid a potential double free later on
- 0090-lzma-Make-sure-we-don-t-dereference-past-array.patch: Fix an
out-of-bounds read in LzmaEncode
- 0091-tftp-Do-not-use-priority-queue.patch: Refactor tftp to not use
priority queues and fix a double free
- 0096-efi-fix-some-malformed-device-path-arithmetic-errors.patch: Fix
various arithmetic errors with malformed device paths
- 0098-Fix-a-regression-caused-by-efi-fix-some-malformed-de.patch: Fix
a NULL deref in the chainloader command introduced by a previous
patch
- 0100-chainloader-Avoid-a-double-free-when-validation-fail.patch:
Avoid a double free in the chainloader command when validation fails
- 0101-relocator-Protect-grub_relocator_alloc_chunk_addr-in.patch:
Protect grub_relocator_alloc_chunk_addr input arguments against
integer overflow / underflow
- 0102-relocator-Protect-grub_relocator_alloc_chunk_align-m.patch:
Protect grub_relocator_alloc_chunk_align max_addr argument against
integer underflow
- 0103-relocator-Fix-grub_relocator_alloc_chunk_align-top-m.patch: Fix
grub_relocator_alloc_chunk_align top memory allocation
- 0104-linux-loader-avoid-overflow-on-initrd-size-calculati.patch:
Avoid overflow on initrd size calculation
* debian/patches/linuxefi_disable_sb_fallback.patch: Disallow unsigned
kernels if UEFI Secure Boot is enabled. If UEFI Secure Boot is enabled
and kernel signature verification fails, do not boot the kernel. Patch
from Linn Crosetto. (LP: #1401532)
* ubuntu-Make-the-linux-command-in-EFI-grub-always-try.patch:
- Make the linux command in EFI grub always try EFI handover
[ Dimitri John Ledkov ]
* SECURITY UPDATE: Grub does not enforce kernel signature validation
when the shim protocol isn't present.
- 0097-linuxefi-fail-kernel-validation-without-shim-protoco.patch:
Fail kernel validation if the shim protocol isn't available
- CVE-2020-15705
-- Chris Coulson <email address hidden> Mon, 20 Jul 2020 21:28:33 +0100
-
grub2 (2.02~beta2-36ubuntu3.23) xenial; urgency=medium
* d/p/fix_booting_for_large_root_volumes.patch: Cherry pick upstream
fix for booting on systems with large root volumes, either by default
or from resizing. (LP: #1840686)
-- Matthew Ruffell <email address hidden> Sat, 19 Oct 2019 17:47:16 +1300
-
grub2 (2.02~beta2-36ubuntu3.22) xenial; urgency=medium
* debian/patches/skip_text_gfxpayload_where_not_supported.patch: Skip the
'text' payload if it's not supported but present in gfxpayload, such as
on EFI systems. (LP: #1826453)
-- Mathieu Trudel-Lapierre <email address hidden> Mon, 29 Apr 2019 10:04:24 -0400
-
grub2 (2.02~beta2-36ubuntu3.21) xenial; urgency=medium
* debian/patches/squash4-fix-fragments-and-sparse-files.patch: Cherry-pick
upstream patch to fix handling of fragments and sparse files in squashfs
filesystems (LP: #1820898).
-- Colin Watson <email address hidden> Wed, 20 Mar 2019 00:31:55 +0000
-
grub2 (2.02~beta2-36ubuntu3.20) xenial; urgency=medium
* debian/patches/linuxefi_fix_relocate_coff.patch: fix typo in
relocate_coff() causing issues with relocation of code in chainload.
(LP: #1792575)
* debian/patches/linuxefi_truncate_overlong_reloc_section.patch: The Windows
7 bootloader has inconsistent headers; truncate to the smaller, correct
size to fix chainloading Windows 7. (LP: #1792575)
grub2 (2.02~beta2-36ubuntu3.19) xenial; urgency=medium
* debian/patches/0001-i386-linux-Add-support-for-ext_lfb_base.patch:
Add support for ext_lfb_base. (LP: #1785033)
-- Mathieu Trudel-Lapierre <email address hidden> Fri, 02 Nov 2018 13:08:47 -0400
-
grub2 (2.02~beta2-36ubuntu3.19) xenial; urgency=medium
* debian/patches/0001-i386-linux-Add-support-for-ext_lfb_base.patch:
Add support for ext_lfb_base. (LP: #1785033)
-- Ivan Hu <email address hidden> Wed, 05 Sep 2018 14:17:32 +0800
-
grub2 (2.02~beta2-36ubuntu3.18) xenial; urgency=medium
* debian/patches/efinet_check_imm_completion.patch: check for immediate
completion when sending data to the net device buffer. This is a required
commit for the patch below.
* debian/patches/efinet_handle_buggy_get_status.patch: correctly handle the
output of get_status() for EFI net devices on buggy firmware.
(LP: #1437353)
-- Mathieu Trudel-Lapierre <email address hidden> Mon, 19 Mar 2018 16:11:06 -0400
-
grub2 (2.02~beta2-36ubuntu3.17) xenial; urgency=medium
* Signal to zpool that it should emit full names of constituent devices.
(LP: #1527727)
-- Scott Moser <email address hidden> Wed, 24 Jan 2018 16:21:35 -0500
-
grub2 (2.02~beta2-36ubuntu3.16) xenial; urgency=medium
[ dann frazier ]
* Use EFI_SIMPLE_TEXT_INPUT_EX to support key combinations.
(LP: #722950)
[ Mathieu Trudel-Lapierre ]
* util/grub-install.c: Use MokManager EFI binary name without
the .signed extension now that shim handles signing via sbsigntool
natively. (LP: #1708245)
- debian/patches/install_signed.patch
* debian/control: Breaks shim << 13 due to the renamed MokManager binary.
-- dann frazier <email address hidden> Wed, 10 Jan 2018 17:04:34 -0700
-
grub2 (2.02~beta2-36ubuntu3.15) xenial; urgency=medium
[ Ike Panhc ]
* Fix grub crash when exit on arm64-platform. (LP: #1731241)
[ Mathieu Trudel-Lapierre ]
* Cherry-pick upstream patch to change the default TSC calibration method
to pmtimer on EFI systems (LP: #1734278)
-- Mathieu Trudel-Lapierre <email address hidden> Mon, 11 Dec 2017 10:25:22 -0500
-
grub2 (2.02~beta2-36ubuntu3.14) xenial; urgency=medium
* Add grub2/update_nvram template to allow users to disable NVRAM
updates during package upgrades (LP: #1642298).
-- dann frazier <email address hidden> Thu, 14 Sep 2017 16:13:39 -0600
-
grub2 (2.02~beta2-36ubuntu3.13) xenial; urgency=medium
* Fix EFIPersistentMemory (PMEM) support; incorrectly handled as "standard"
reserved memory without really marking it reserved: (LP: #1716424)
- debian/patches/git_pmem_really_mark_mem_reserved_3d2c8048.patch
- debian/patches/git_pmem_translate_persistent_type_76ce1de7.patch
- debian/patches/git_pmem_mmap_handle_pmem_c79c59f1.patch
- debian/patches/git_pmem_efiemu_handle_pmem_ae3b83a4.patch
-- Mathieu Trudel-Lapierre <email address hidden> Sun, 10 Sep 2017 20:08:16 -0400
-
grub2 (2.02~beta2-36ubuntu3.12) xenial; urgency=medium
* debian/patches: Rework linuxefi/SecureBoot support and sync with upstream
SB patch set: (LP: #1696599)
- linuxefi_backport_arm64.patch: backport basic arm64 chainload/linux
command support from 17.04.
- linuxefi_arm_sb_support.patch: add Secure Boot support for arm for its
chainloader.
- linuxefi_fix_validation_race.patch: Fix a race in validating images.
- linuxefi_chainloader_path.patch: honor the starting path for grub, so
images do not need to be started from $root.
- linuxefi_chainloader_sb.patch: Fix some more issues in chainloader use
when Secure Boot is enabled.
- linuxefi_loaders_enforce_sb.patch: Enforce Secure Boot policy for all
loaders: don't load the commands when Secure Boot is enabled.
- linuxefi_re-enable_linux_cmd.patch: Since we rely on the linux and
initrd commands to automatically hand-off to linuxefi/initrdefi; re-
enable the linux loader.
- linuxefi_chainloader_pe_fixes.patch: PE parsing fixes for chainloading
"special" PE images, such as Windows'.
- linuxefi_rework_non-sb_cases.patch: rework cases where Secure Boot is
disabled or shim validation is disabled so loading works as EFI binaries
when it is supposed to.
- Removed linuxefi_require_shim.patch; superseded by the above.
(LP: #1689687)
* debian/patches/git_tsc_use_alt_delay_sources_d43a5ee6.patch: refreshed.
* debian/patches/arm64-set-correct-length-of-device-path-end-entry.patch:
dropped; included in linuxefi_backport_arm64.patch.
-- Mathieu Trudel-Lapierre <email address hidden> Thu, 08 Jun 2017 10:16:17 -0700
-
grub2 (2.02~beta2-36ubuntu3.11) xenial; urgency=medium
* Fix syntax error in debian/postinst.in. (LP #1692181)
-- Steve Langasek <email address hidden> Sat, 20 May 2017 12:59:17 -0700
-
grub2 (2.02~beta2-36ubuntu3.10) xenial; urgency=medium
* debian/patches/install_signed.patch: don't install fb$arch.efi; it breaks
"removable" installs where files are all installed to /EFI/BOOT; and it
also doesn't belong in the /EFI/ubuntu path for the default case. Fallback
install simply needs more work and isn't ready for SRU. (LP: #1684341)
* debian/postinst.in: clean up fb$arch.efi.
-- Mathieu Trudel-Lapierre <email address hidden> Fri, 19 May 2017 16:54:14 -0400
-
grub2 (2.02~beta2-36ubuntu3.9) xenial; urgency=medium
* debian/patches/install_signed.patch: update to use the new names for the
shim binary (shim$arch), MokManager (mm$arch) and add fallback (fb$arch).
(LP: #1637290)
* debian/control: Breaks shim (<< 0.9+1474479173.6c180c6-0ubuntu1~) for the
renamed EFI binaries.
-- Mathieu Trudel-Lapierre <email address hidden> Tue, 08 Nov 2016 14:42:24 -0500
-
grub2 (2.02~beta2-36ubuntu3.8) xenial; urgency=medium
* debian/patches/support_initrd-less_boot.patch: Added knobs to allow
non-initrd boot config. Thanks Chris Glass! (LP: #1640878)
-- Mathieu Trudel-Lapierre <email address hidden> Wed, 01 Mar 2017 12:36:16 -0500
-
grub2 (2.02~beta2-36ubuntu3.7) xenial; urgency=medium
[ Mauricio Faria de Oliveira ]
* Disable os-prober for ppc64el on the PowerNV platform, to reduce the
number of entries/clutter from other OSes in Petitboot (LP: #1447500)
-- Mathieu Trudel-Lapierre <email address hidden> Wed, 11 Jan 2017 19:07:05 -0500
-
grub2 (2.02~beta2-36ubuntu3.6) xenial; urgency=medium
* Fix support for IPv6 PXE booting under UEFI: (LP: #1229458)
- grub_add_grub_env_set_net_property.patch: add grub_env_set_net_property.
- misc-fix-invalid-char-strtol.patch: fix strto*l methods invalid chars.
- net_read_bracketed_ipv6_addr.patch: read bracketed IPv6 addresses.
- bootp_new_net_bootp6_command.patch: add new bootp6 commands.
- efinet_uefi_ipv6_pxe_support.patch: teach efinet to allow bootp6.
- bootp_process_dhcpack_http_boot.patch: process DHCPACK, support HTTP.
- efinet_set_network_from_uefi_devpath.patch: configure network from the
devpath provided by the UEFI firmware.
- efinet_set_dns_from_uefi_proto.patch: set DNS nameservers and search
domains from the UEFI protocol.
* Fix booting on Hyper-V gen 2 VMs due to the lack of PIT there; we can deal
with this by using other timers when PIT aren't available. (LP: #1519836)
- debian/patches/git_tsc_use_alt_delay_sources_d43a5ee6.patch
- debian/patches/git_split_pmtimer_wait_tsc_d9a3bfea.patch
- debian/patches/git_fix_tsc_calibration_pit_a03c1034.patch
grub2 (2.02~beta2-36ubuntu3.3) xenial; urgency=medium
* debian/patches/ip6_send_router_solicitation_7c4b6b7b.patch: handle long
RA intervals by explicitly sending a SOLICIT.
* debian/patches/ip6_fix_routing_eb9f401f.patch: fix IPv6 routing; we should
be able to talk to things outside of link-local addresses; to do this,
allow specifying a gateway and interface. (LP: #1229458)
-- Mathieu Trudel-Lapierre <email address hidden> Thu, 15 Sep 2016 13:56:55 -0400
-
grub2 (2.02~beta2-36ubuntu3.5) xenial; urgency=medium
* debian/patches/install_signed.patch: update to use the new names for the
shim binary (shim$arch), MokManager (mm$arch) and add fallback (fb$arch).
(LP: #1637290)
* debian/control: Breaks shim (<< 0.9+1474479173.6c180c6-0ubuntu1~) for the
renamed EFI binaries.
grub2 (2.02~beta2-36ubuntu3.4) xenial; urgency=medium
* Fix support for IPv6 PXE booting under UEFI: (LP: #1229458)
- grub_add_grub_env_set_net_property.patch: add grub_env_set_net_property.
- misc-fix-invalid-char-strtol.patch: fix strto*l methods invalid chars.
- net_read_bracketed_ipv6_addr.patch: read bracketed IPv6 addresses.
- bootp_new_net_bootp6_command.patch: add new bootp6 commands.
- efinet_uefi_ipv6_pxe_support.patch: teach efinet to allow bootp6.
- bootp_process_dhcpack_http_boot.patch: process DHCPACK, support HTTP.
- efinet_set_network_from_uefi_devpath.patch: configure network from the
devpath provided by the UEFI firmware.
- efinet_set_dns_from_uefi_proto.patch: set DNS nameservers and search
domains from the UEFI protocol.
* Fix booting on Hyper-V gen 2 VMs due to the lack of PIT there; we can deal
with this by using other timers when PIT aren't available. (LP: #1519836)
- debian/patches/git_tsc_use_alt_delay_sources_d43a5ee6.patch
- debian/patches/git_split_pmtimer_wait_tsc_d9a3bfea.patch
- debian/patches/git_fix_tsc_calibration_pit_a03c1034.patch
grub2 (2.02~beta2-36ubuntu3.3) xenial; urgency=medium
* debian/patches/ip6_send_router_solicitation_7c4b6b7b.patch: handle long
RA intervals by explicitly sending a SOLICIT.
* debian/patches/ip6_fix_routing_eb9f401f.patch: fix IPv6 routing; we should
be able to talk to things outside of link-local addresses; to do this,
allow specifying a gateway and interface. (LP: #1229458)
-- Mathieu Trudel-Lapierre <email address hidden> Tue, 08 Nov 2016 14:42:24 -0500
-
grub2 (2.02~beta2-36ubuntu3.4) xenial; urgency=medium
* Fix support for IPv6 PXE booting under UEFI: (LP: #1229458)
- grub_add_grub_env_set_net_property.patch: add grub_env_set_net_property.
- misc-fix-invalid-char-strtol.patch: fix strto*l methods invalid chars.
- net_read_bracketed_ipv6_addr.patch: read bracketed IPv6 addresses.
- bootp_new_net_bootp6_command.patch: add new bootp6 commands.
- efinet_uefi_ipv6_pxe_support.patch: teach efinet to allow bootp6.
- bootp_process_dhcpack_http_boot.patch: process DHCPACK, support HTTP.
- efinet_set_network_from_uefi_devpath.patch: configure network from the
devpath provided by the UEFI firmware.
- efinet_set_dns_from_uefi_proto.patch: set DNS nameservers and search
domains from the UEFI protocol.
* Fix booting on Hyper-V gen 2 VMs due to the lack of PIT there; we can deal
with this by using other timers when PIT aren't available. (LP: #1519836)
- debian/patches/git_tsc_use_alt_delay_sources_d43a5ee6.patch
- debian/patches/git_split_pmtimer_wait_tsc_d9a3bfea.patch
- debian/patches/git_fix_tsc_calibration_pit_a03c1034.patch
-- Mathieu Trudel-Lapierre <email address hidden> Thu, 15 Sep 2016 13:56:55 -0400
-
grub2 (2.02~beta2-36ubuntu3.3) xenial; urgency=medium
* debian/patches/ip6_send_router_solicitation_7c4b6b7b.patch: handle long
RA intervals by explicitly sending a SOLICIT.
* debian/patches/ip6_fix_routing_eb9f401f.patch: fix IPv6 routing; we should
be able to talk to things outside of link-local addresses; to do this,
allow specifying a gateway and interface. (LP: #1229458)
-- Mathieu Trudel-Lapierre <email address hidden> Wed, 03 Aug 2016 16:46:41 -0400
-
grub2 (2.02~beta2-36ubuntu3.2) xenial; urgency=medium
* Add loopback and squash4 modules to the signed EFI images. LP: #1604499.
-- Steve Langasek <email address hidden> Fri, 22 Jul 2016 15:29:24 -0700
-
grub2 (2.02~beta2-36ubuntu3.1) xenial; urgency=medium
* debian/postinst.in: replace setup_mok_validation with a call to
update-secureboot-policy, a script shipped by shim-signed.
(LP: #1574727)
* debian/control: drop Depends on mokutil, we're not calling it directly.
-- Mathieu Trudel-Lapierre <email address hidden> Fri, 20 May 2016 15:04:00 -0400
-
grub2 (2.02~beta2-36ubuntu3) xenial; urgency=medium
* No-change rebuild to correctly build our unicode font against libfreetype6.
(LP: #1559933)
-- Mathieu Trudel-Lapierre <email address hidden> Fri, 15 Apr 2016 17:21:17 -0400
-
grub2 (2.02~beta2-36ubuntu2) xenial; urgency=medium
* debian/postinst.in: (LP: #1558438)
- fix quoting variables for setup_mok_validation() to account for passwords
that might have special characters.
- use printf rather than straight echo to pass values to mokutil.
- ask the user to confirm password; not just write it once, this will avoid
issues with typos in the Secure Boot keys.
-- Mathieu Trudel-Lapierre <email address hidden> Fri, 18 Mar 2016 21:35:50 -0400
-
grub2 (2.02~beta2-36ubuntu1) xenial; urgency=medium
[ Debconf translations ]
* [ja] Japanese (Takuma Yamada; closes: #815203, #817084).
[ Mathieu Trudel-Lapierre ]
* debian/postinst.in: add MOK validation support; so that it's possible on
upgrade to disable validation in shim if the user has dkms packages
installed.
* debian/control: add mokutil to grub-efi-$arch packages to deal with
toggling MOK validation.
[ dann frazier ]
* Cherry-pick fix for slow timer events on ARM/UEFI (LP: #1553390).
-- Mathieu Trudel-Lapierre <email address hidden> Tue, 15 Mar 2016 12:57:08 -0400
-
grub2 (2.02~beta2-36) unstable; urgency=medium
[ Colin Watson ]
* Use HTTPS for Vcs-Git URL.
* Add zfs, zfscrypt, and zfsinfo to signed EFI images (LP: #1542358).
[ Martin Pitt ]
* debian/postinst.in, debian/kernel/zz-update-grub: Call
systemd-detect-virt (which works under any init system, despite the
name) instead of the Ubuntu specific running-in-container wrapper.
(LP: #1539016)
-- Colin Watson <email address hidden> Fri, 05 Feb 2016 15:41:05 +0000
-
grub2 (2.02~beta2-35ubuntu1) xenial; urgency=medium
* debian/postinst.in, debian/kernel/zz-update-grub: Call systemd-detect-virt
instead of the Ubuntu specific running-in-container wrapper. (LP: #1539016)
-- Martin Pitt <email address hidden> Thu, 28 Jan 2016 14:25:14 +0100
-
grub2 (2.02~beta2-35) unstable; urgency=medium
* Apply the arm64 -mpc-relative-literal-loads workaround in configure
rather than in debian/rules, to cope with toolchains that don't have the
relevant patch applied.
-- Colin Watson <email address hidden> Fri, 22 Jan 2016 11:02:10 +0000
-
grub2 (2.02~beta2-33) unstable; urgency=high
[ Mathieu Trudel-Lapierre ]
* Cherry-picks to better handle TFTP timeouts on some arches: (LP: #1521612)
- (7b386b7) efidisk: move device path helpers in core for efinet
- (c52ae40) efinet: skip virtual IP devices when enumerating cards
- (f348aee) efinet: enable hardware filters when opening interface
[ Lee Trager ]
* Add raid5rec and raid6rec to signed EFI images (closes: #807385).
[ Colin Watson ]
* CVE-2015-8370: Fix authentication bypass via backspace integer underflow
(closes: #808122).
-- Colin Watson <email address hidden> Wed, 16 Dec 2015 09:46:22 +0000
-
grub2 (2.02~beta2-32ubuntu1) xenial; urgency=medium
* Cherry-picks to better handle TFTP timeouts on some arches: (LP: #1521612)
- (7b386b7) efidisk: move device path helpers in core for efinet
- (c52ae40) efinet: skip virtual IP devices when enumerating cards
- (f348aee) efinet: enable hardware filters when opening interface
-- Mathieu Trudel-Lapierre <email address hidden> Thu, 03 Dec 2015 15:03:46 -0500
-
grub2 (2.02~beta2-32) unstable; urgency=medium
[ Mathieu Trudel-Lapierre ]
* Cherry-pick patch to add SAS disks to the device list from the ofdisk
module. (LP: #1517586)
[ dann frazier ]
* Cherry-pick patch to open Simple Network Protocol exclusively.
(LP: #1508893)
[ Linn Crosetto ]
* Install arm64 signed images if UEFI Secure Boot is enabled (closes:
#806178).
-- Colin Watson <email address hidden> Wed, 25 Nov 2015 16:07:21 +0000
-
grub2 (2.02~beta2-31ubuntu1) xenial; urgency=medium
* Cherry-pick patch to add SAS disks to the device list from the ofdisk
module. (LP: #1517586)
-- Mathieu Trudel-Lapierre <email address hidden> Tue, 17 Nov 2015 10:55:56 -0500
-
grub2 (2.02~beta2-31) unstable; urgency=medium
* Cherry-pick upstream patch to fix XFS alignment treatment.
* Cherry-pick upstream patch to fix XFS handling of symlink with
crc-enabled filesystem.
-- Colin Watson <email address hidden> Thu, 05 Nov 2015 15:08:03 +0000
-
grub2 (2.02~beta2-30) unstable; urgency=medium
[ dann frazier ]
* arm64/setjmp: Add missing license macro. (LP: #1459871)
[ Colin Watson ]
* Cherry-pick upstream patches for XFS v5 support (closes: #772565).
-- Colin Watson <email address hidden> Thu, 05 Nov 2015 12:30:27 +0000
-
grub2 (2.02~beta2-29) unstable; urgency=medium
[ Linn Crosetto ]
* Clean up docs, mpi, and other files (closes: #798607).
[ dann frazier ]
* progress: avoid NULL dereference for net files. (LP: #1459872)
-- Colin Watson <email address hidden> Tue, 13 Oct 2015 23:36:46 +0100