Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities

grub-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02

From:	Daniel Kiper
Subject:	Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02 round
Date:	Mon, 22 Mar 2021 16:50:22 +0100
User-agent:	NeoMutt/20170113 (1.7.2)

On Thu, Mar 18, 2021 at 09:58:23AM +0100, Paul Menzel wrote:
> Dear Darren, dear Darren,
>
> Am 02.03.21 um 19:00 schrieb Daniel Kiper:
>
> Thank you very much for finding and fixing all these issues, and
> coordinating the publication.
>
> […]
>
> >   .../lib/gnulib-patches/fix-null-state-deref.patch  |  12 +
> >   .../gnulib-patches/fix-regcomp-uninit-token.patch  |  15 +
> >   .../gnulib-patches/fix-regexec-null-deref.patch    |  12 +
> >   .../lib/gnulib-patches/fix-uninit-structure.patch  |  11 +
> >   .../lib/gnulib-patches/fix-unused-value.patch      |  14 +
> Just a small question, if all these fixes were sent and applied upstream.

I am going to send all of these fixes upstream and bump the gnulib
version when they are applied or the issues are fixed in the other way.
Though after release. However, if you want to do it earlier go ahead.
Just keep me in the loop...

Daniel

[Prev in Thread]

Current Thread

[Next in Thread]

[SECURITY PATCH 117/117] kern/mm: Fix grub_debug_calloc() compilation error, (continued)
- [SECURITY PATCH 117/117] kern/mm: Fix grub_debug_calloc() compilation error, Daniel Kiper, 2021/03/02
- [SECURITY PATCH 110/117] grub-install-common: Add --sbat option, Daniel Kiper, 2021/03/02
- [SECURITY PATCH 113/117] kern/misc: Add STRING type for internal printf() format handling, Daniel Kiper, 2021/03/02
- [SECURITY PATCH 111/117] shim_lock: Only skip loading shim_lock verifier with explicit consent, Daniel Kiper, 2021/03/02
- Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02 round, John Paul Adrian Glaubitz, 2021/03/02
  - Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02 round, Bruce Dubbs, 2021/03/02
  - Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02 round, Daniel Kiper, 2021/03/02
    - Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02 round, Neal Gompa, 2021/03/09
    - Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02 round, Daniel Kiper, 2021/03/09
- Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02 round, Paul Menzel, 2021/03/18
  - Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02 round, Daniel Kiper <=

Prev by Date: Re: [PATCH v2] i386-pc: build verifiers API as module
Next by Date: Re: [PATCH] arm/efi: fix ram base detection
Previous by thread: Re: [SECURITY PATCH 000/117] Multiple GRUB2 vulnerabilities - 2021/03/02 round
Next by thread: Re: [PATCH] tpm: Don't propagate measurement failures to the verifiers layer
Index(es):
- Date
- Thread