Your message dated Sun, 04 Dec 2022 21:07:37 +0000
with message-id <[email protected]>
and subject line Bug#1024395: fixed in grub2 2.06-6
has caused the Debian Bug report #1024395,
regarding grub-efi-amd64-signed: after upgrade to 1+2.06+5 I get errors when
booting (although I manage to boot)
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1024395: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024395
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: grub-efi-amd64-bin
Version: 1+2.06+5
Severity: grave
Tags: security
Justification: user security hole
X-Debbugs-Cc: Debian Security Team <[email protected]>
After upgrade to 2.06-5, I get an error message "prohibited by secure boot
policy" and it boot
with a strange look with \xe7caracaters instead of lines.
I build my own kernel and enrolled my owns keys, sign the linux kernel binarry
and the mdoules with the keys.
Everythong was working fine with 2.06-3.
I also noticed that my enrolled keys is no more listed via "mokutil
--list-enrolled". Although no key were cleared.
-- System Information:
Debian Release: bookworm/sid
APT prefers stable-security
APT policy: (500, 'stable-security'), (500, 'unstable'), (500, 'testing'),
(1, 'experimental')
merged-usr: no
Architecture: amd64 (x86_64)
Kernel: Linux 5.10.155 (SMP w/8 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE,
TAINT_UNSIGNED_MODULE
Locale: LANG=fr_FR.UTF8, LC_CTYPE=fr_FR.UTF8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)
Versions of packages grub-efi-amd64-signed depends on:
ii grub-common 2.06-5
Versions of packages grub-efi-amd64-signed recommends:
ii shim-signed 1.38+15.4-7
grub-efi-amd64-signed suggests no packages.
Versions of packages grub-efi-amd64-bin depends on:
ii grub-common 2.06-5
Versions of packages grub-efi-amd64-bin recommends:
ii efibootmgr 17-1
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: grub2
Source-Version: 2.06-6
Done: Steve McIntyre <[email protected]>
We believe that the bug you reported is fixed in the latest version of
grub2, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Steve McIntyre <[email protected]> (supplier of updated grub2 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sun, 04 Dec 2022 20:42:23 +0000
Source: grub2
Architecture: source
Version: 2.06-6
Distribution: unstable
Urgency: medium
Maintainer: GRUB Maintainers <[email protected]>
Changed-By: Steve McIntyre <[email protected]>
Closes: 1024395 1024447 1025352
Changes:
grub2 (2.06-6) unstable; urgency=medium
.
[ Steve McIntyre ]
* Include fonts in the memdisk build for EFI images.
Closes: #1024395, #1025352, #1024447
* Bump Debian SBAT level to 4
- Due to a mistake in the buster upload (2.06-3~deb10u2) that left
the CVE-2022-2601 bugs in place, we need to bump SBAT for all of
the Debian GRUB binaries. :-(
* Switch away from git-dpm
Checksums-Sha1:
65cbd15ed0628b35f6fc552bfbed4d696564e92f 7093 grub2_2.06-6.dsc
524ab939e9ab2b7764001dc87373f8b32be68650 1093840 grub2_2.06-6.debian.tar.xz
725119812cc7ec6afd082f65d93ab430fa210351 13039 grub2_2.06-6_source.buildinfo
Checksums-Sha256:
c12c0e0f6f0df102631228f2f6fba004cd3cf21376996d0a9adbcf894c8790cf 7093
grub2_2.06-6.dsc
cf5805cbe827d21d7ba93ba9d28b319e94cd03d85a88bce990b12c3c543e67ed 1093840
grub2_2.06-6.debian.tar.xz
3a9892409ca9a9c97303dced6077bf5af5d02bf1904d2d9d645a4a48a8bf00f1 13039
grub2_2.06-6_source.buildinfo
Files:
f0ce3be02208477bda513f47cbc6953a 7093 admin optional grub2_2.06-6.dsc
6872cb17f0089711129237f68a0cf2ef 1093840 admin optional
grub2_2.06-6.debian.tar.xz
cf5f877164dadfbbd6a64e958f0cf086 13039 admin optional
grub2_2.06-6_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=WVAJ
-----END PGP SIGNATURE-----
--- End Message ---
