StarlingX Integration and packaging
Go to file
Li Zhou daea2d8219 grub2/grub-efi: fix CVE-2023-4692/CVE-2023-4693
Porting patches from grub2_2.06-3~deb11u6 to fix
CVE-2023-4692/CVE-2023-4693.

The source code of grub2_2.06-3~deb11u6 is from:
https://snapshot.debian.org/archive/debian-security/20231006T185629Z/
pool/updates/main/g/grub2/grub2_2.06-3~deb11u6.debian.tar.xz

Patch for CVE-2023-4692:
<fs/ntfs: Fix an OOB write when parsing the $ATTRIBUTE_LIST attribute
 for the $MFT file>
Patch for CVE-2023-4693:
<fs/ntfs: Fix an OOB read when reading data from the resident $DATA
 attribute>

No content changes for all the patches from debian release.

We do this because grub2/grub-efi is ported from wrlinux for
secure boot bringing up.

Test plan:
 - PASS: build grub2/grub-efi.
 - PASS: build-image and install and boot up on lab/qemu.
 - PASS: check that the "stx.N" version number is right for both
         bios(grub2 ver) and uefi(grub-efi ver) boot.

Closes-bug: 2038742

Signed-off-by: Li Zhou <li.zhou@windriver.com>
Change-Id: I7c8e11952fb409be93e9d777bf7da7b87414a95d
2023-10-09 22:31:36 -04:00
base Merge "Use time traceable flag in HA clock selection" 2023-09-11 18:07:13 +00:00
bmc/Redfishtool Add auto-versioning to starlingx/integ packages 2020-06-24 09:48:28 +08:00
centos-debian-compat Update integ debian package ver based on git 2023-03-01 18:53:50 +00:00
ceph/ceph Fix use of ceph_mgr_lifecycle_days variable 2023-07-05 13:50:44 +00:00
config Fix the 'unless' condition of ceph-osd-prepare in osd puppet 2023-08-31 08:01:33 -03:00
database Port stx-mariadb base image to stx-debian 2022-12-15 15:20:20 -03:00
devstack Relocated some packages to repo 'utilities' 2019-09-05 20:31:36 -04:00
doc Fix tox-docs failing sphinx 2023-08-29 16:52:04 -03:00
docker/python-docker Update debian package versions to use git commits 2023-03-01 11:27:50 -05:00
filesystem Introduce Luks encrytion service 2023-09-08 01:39:26 -04:00
golang-github-dev Fix lint errors identified by Zuul pylint job 2023-03-15 12:07:17 +00:00
gpu/gpu-operator Debian: Do not install gpu-operator into ISO 2022-09-21 14:25:50 +00:00
grub grub2/grub-efi: fix CVE-2023-4692/CVE-2023-4693 2023-10-09 22:31:36 -04:00
kubernetes Merge "cengn reference removal" 2023-10-05 19:14:19 +00:00
ldap Update error message for ldapsetpasswd 2023-03-28 16:54:07 +00:00
logging/logrotate/centos Add auto-versioning to starlingx/integ packages 2020-06-24 09:48:28 +08:00
networking Debian: lldpd: fix CVE-2023-41910 2023-10-09 22:31:02 -04:00
ostree debian: initramfs-ostree: add support to skip eject operation 2023-09-06 13:06:17 +08:00
python python3.9: Add timeout regrtest 2023-04-12 08:29:08 -03:00
releasenotes Switch to newer openstackdocstheme and reno versions 2020-06-04 14:28:48 +02:00
requests-toolbelt Add auto-versioning to starlingx/integ packages 2020-06-24 09:48:28 +08:00
security shim: remove the FILES_GITREVCOUNT temporarily 2023-03-17 10:37:31 +08:00
storage-drivers Upgrade Trident to 23.04.0 version. 2023-06-13 11:27:30 +00:00
tools kdump-tools: disable AER to fix kdump hung issue 2022-12-17 08:38:58 +08:00
virt Subdirectories 'virt/qemu virt/libvirt ' relocated to repo 'virt' 2023-04-12 15:23:10 -04:00
.gitignore Add Docker Registry Token Server 2019-01-08 11:42:04 -05:00
.gitreview OpenDev Migration Patch 2019-04-19 19:52:31 +00:00
.yamllint Add .yamllint file 2021-09-09 19:05:36 +03:00
.zuul.yaml Fix github mirroring for this repo 2023-04-28 12:38:51 -04:00
bindep.txt Fix pylint zuul jobs failing due to libvirt-python and pkgconfig 2019-07-04 14:14:39 -05:00
centos_build_layer.cfg Build layering, add layer build config file and srpm and tarball lst 2019-10-21 09:24:22 +08:00
centos_extra_downloads.lst Move mellanox userspace from integ repo 2020-05-06 19:58:38 -04:00
centos_guest_image_rt.inc Subdirectory kernel relocated to new repo starlingx/kernel 2020-04-11 13:08:18 -04:00
centos_guest_image.inc Subdirectory kernel relocated to new repo starlingx/kernel 2020-04-11 13:08:18 -04:00
centos_iso_image.inc Config file changes to remove 'virt/qemu virt/libvirt ' 2023-04-12 15:21:49 -04:00
centos_pkg_dirs Config file changes to remove 'virt/qemu virt/libvirt ' 2023-04-12 15:21:49 -04:00
centos_pkg_dirs_installer Config file changes for packages being relocated to repo 'compile' 2019-09-05 20:28:59 -04:00
centos_pkg_dirs_rt Move mellanox userspace from integ repo 2020-05-06 19:58:38 -04:00
centos_srpms_3rdparties.lst networking: Update keepalived from 1.3.5 to 2.1.5 2021-11-12 12:12:16 -05:00
centos_srpms_centos.lst CentOS: tzdata: upversion to 2022a 2022-07-12 14:01:21 -04:00
centos_stable_docker_images.inc Update debian_stable_docker_images.inc to reflect libvirt relocation 2023-04-18 12:46:48 -04:00
centos_stable_wheels.inc Add libvirt module to stable wheels for image build 2019-04-04 22:54:04 -04:00
centos_tarball-dl.lst Merge "Upgrade Trident to 22.07.0 version." 2022-10-19 17:43:53 +00:00
CONTRIBUTORS.wrs StarlingX open source release updates 2018-05-31 07:36:35 -07:00
debian_build_layer.cfg Add debian_build_layer.cfg file 2021-10-05 14:08:19 -04:00
debian_iso_image.inc Remove Armada related packages from stx build 2023-09-27 18:58:13 +00:00
debian_pkg_dirs Remove Armada related packages from stx build 2023-09-27 18:58:13 +00:00
debian_stable_docker_images.inc Update debian_stable_docker_images.inc to reflect libvirt relocation 2023-04-18 12:46:48 -04:00
distroless_stable_docker_images.inc Remove Armada related packages from stx build 2023-09-27 18:58:13 +00:00
LICENSE StarlingX open source release updates 2018-05-31 07:36:35 -07:00
pylint.rc Updating the pylint tox target to reflect its targets 2021-11-04 10:22:24 -05:00
README.rst Followup opendev cleanup and test jobs 2019-04-21 09:23:19 -05:00
test-requirements.txt Add default test framework 2018-06-11 13:45:22 -05:00
tox.ini Fix zuul failures for setuptools and pbr 2023-07-17 19:17:08 +00:00

integ

StarlingX Integration