microsoft
/
CBL-Mariner
зеркало из https://github.com/microsoft/CBL-Mariner.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
CBL-Mariner/SPECS/grub2
История
Christopher Co 1f7349be9c
fix: add fedora SBAT entries to grub2 (#10865) 
Since we pull secure boot patches from Fedora's grub2, we should include their SBAT entries into our Azure Linux grub2 SBAT.

Signed-off-by: Chris Co <chrco@microsoft.com>
 		2024-10-31 11:52:39 -07:00
..
0001-Add-support-for-Linux-EFI-stub-loading.patch
0002-Rework-linux-command.patch
0003-Rework-linux16-command.patch
0004-Add-secureboot-support-on-efi-chainloader.patch
0005-Make-any-of-the-loaders-that-link-in-efi-mode-honor-.patch
0006-Handle-multi-arch-64-on-32-boot-in-linuxefi-loader.patch
0017-Pass-x-hex-hex-straight-through-unmolested.patch
0037-Replace-a-lot-of-man-pages-with-slightly-nicer-ones.patch
0052-Make-our-info-pages-say-grub2-where-appropriate.patch
0069-Make-pmtimer-tsc-calibration-not-take-51-seconds-to-.patch
0104-Rework-how-the-fdt-command-builds.patch
0112-Try-to-pick-better-locations-for-kernel-and-initrd.patch
0115-x86-efi-Use-bounce-buffers-for-reading-to-addresses-.patch
0116-x86-efi-Re-arrange-grub_cmd_linux-a-little-bit.patch
0117-x86-efi-Make-our-own-allocator-for-kernel-stuff.patch
0118-x86-efi-Allow-initrd-params-cmdline-allocations-abov.patch
0148-efi-Set-image-base-address-before-jumping-to-the-PE-.patch
0149-tpm-Don-t-propagate-TPM-measurement-errors-to-the-ve.patch
0150-x86-efi-Reduce-maximum-bounce-buffer-size-to-16-MiB.patch
0156-efilinux-Fix-integer-overflows-in-grub_cmd_initrd.patch
0157-linuxefi-fail-kernel-validation-without-shim-protoco.patch
0166-grub-install-disable-support-for-EFI-platforms.patch
0167-restore-umask-for-grub-config.patch
0170-fix-memory-alloc-errno-reset.patch
0173-loader-efi-chainloader-Simplify-the-loader-state.patch
0174-commands-boot-Add-API-to-pass-context-to-loader.patch
0175-loader-efi-chainloader-Use-grub_loader_set_ex.patch
0176-kern-efi-sb-Reject-non-kernel-files-in-the-shim_lock.patch
0177-kern-file-Do-not-leak-device_name-on-error-in-grub_f.patch
0178-video-readers-png-Abort-sooner-if-a-read-operation-f.patch
0179-video-readers-png-Refuse-to-handle-multiple-image-he.patch
0180-video-readers-png-Drop-greyscale-support-to-fix-heap.patch
0181-video-readers-png-Avoid-heap-OOB-R-W-inserting-huff-.patch
0182-video-readers-png-Sanity-check-some-huffman-codes.patch
0183-video-readers-jpeg-Abort-sooner-if-a-read-operation-.patch
0184-video-readers-jpeg-Do-not-reallocate-a-given-huff-ta.patch
0185-video-readers-jpeg-Refuse-to-handle-multiple-start-o.patch
0186-video-readers-jpeg-Block-int-underflow-wild-pointer-.patch
0187-normal-charset-Fix-array-out-of-bounds-formatting-un.patch
0188-net-ip-Do-IP-fragment-maths-safely.patch
0189-net-netbuff-Block-overly-large-netbuff-allocs.patch
0190-net-dns-Fix-double-free-addresses-on-corrupt-DNS-res.patch
0191-net-dns-Don-t-read-past-the-end-of-the-string-we-re-.patch
0192-net-tftp-Prevent-a-UAF-and-double-free-from-a-failed.patch
0193-net-tftp-Avoid-a-trivial-UAF.patch
0194-net-http-Do-not-tear-down-socket-if-it-s-already-bee.patch
0195-net-http-Fix-OOB-write-for-split-http-headers.patch
0196-net-http-Error-out-on-headers-with-LF-without-CR.patch
0197-fs-f2fs-Do-not-read-past-the-end-of-nat-journal-entr.patch
0198-fs-f2fs-Do-not-read-past-the-end-of-nat-bitmap.patch
0199-fs-f2fs-Do-not-copy-file-names-that-are-too-long.patch
0200-fs-btrfs-Fix-several-fuzz-issues-with-invalid-dir-it.patch
0201-fs-btrfs-Fix-more-ASAN-and-SEGV-issues-found-with-fu.patch
0202-fs-btrfs-Fix-more-fuzz-issues-related-to-chunks.patch
CVE-2020-10713.nopatch
CVE-2020-14308.nopatch
CVE-2020-14309.nopatch
CVE-2020-14310.nopatch
CVE-2020-14311.nopatch
CVE-2020-14372.nopatch
CVE-2020-25632.nopatch
CVE-2020-25647.nopatch
CVE-2020-27749.nopatch
CVE-2020-27779.nopatch
CVE-2021-3418.nopatch
CVE-2021-20225.nopatch
CVE-2021-20233.nopatch
CVE-2022-2601.patch
CVE-2022-3775.patch
disable-checksum-code-optimization.patch
grub2.signatures.json
grub2.spec
sbat-3-0001-font-Reject-glyphs-exceeds-font-max_glyph_width-or-f.patch
sbat-3-0004-font-Remove-grub_font_dup_glyph.patch
sbat-3-0005-font-Fix-integer-overflow-in-ensure_comb_space.patch
sbat-3-0006-font-Fix-integer-overflow-in-BMP-index.patch
sbat-3-0007-font-Fix-integer-underflow-in-binary-search-of-char-.patch
sbat-3-0008-kern-efi-sb-Enforce-verification-of-font-files.patch
sbat-3-0009-fbutil-Fix-integer-overflow.patch
sbat-3-0011-font-Harden-grub_font_blit_glyph-and-grub_font_blit_.patch
sbat-3-0012-font-Assign-null_font-to-glyphs-in-ascii_font_glyph.patch
sbat-3-0013-normal-charset-Fix-an-integer-overflow-in-grub_unico.patch
sbat-4-0001-fs-ntfs-Fix-an-OOB-write-when-parsing-the-ATTRIBUTE_.patch
sbat-4-0002-fs-ntfs-Fix-an-OOB-read-when-reading-data-from-the-r.patch
sbat-4-0003-fs-ntfs-Fix-an-OOB-read-when-parsing-directory-entri.patch
sbat-4-0004-fs-ntfs-Fix-an-OOB-read-when-parsing-bitmaps-for-ind.patch
sbat-4-0005-fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume-label.patch
sbat-4-0006-fs-ntfs-Make-code-more-readable.patch
sbat.csv.in