Source: grub2 Version: 2.14-2 Severity: important On Sid we've just had a kernel update from 6.19.6-1 to 6.19.6-2. The former came with the package named 'linux-image-6.19.6+deb14-amd64'. The latter replaced this with a version of '6.19.6+deb14+1'.
After a reboot I tried to remove the older version with dpkg but got a warning about removing the running kernel version. This was strange; clearly something was getting confused with the version numbers, and presumably was getting tripped up by the unusual double use of '+'. Checking 'uname -a' it seemed that I was indeed still running the older version. Rebooting again, when grub had loaded I switched into advanced mode to see the list of kernel versions. Version '6.19.6+deb14' was listed first, with '6.19.6+deb14+1' second. Going back to the main grub menu and using 'e' on the first entry that should load the latest version, I could see that it was pointing at the older version. So it seems that grub is failing to recognise that '6.19.6+deb14+1' is a newer version than '6.19.6+deb14'. If I didn't have a habit of promptly removing old versions I wouldn't have noticed that I was unintentionally still running the older version without the new apparmor security fixes. Since security is affected, I've bumped the priority a bit.
