u-boot - Debian Package Tracker

general

source: u-boot (main)
version: 2021.01+dfsg-2
maintainer: Vagrant Cascadian (DMD)
uploaders: Clint Adams [DMD] – Loïc Minier [DMD]
arch: all
std-ver: 4.5.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2014.10+dfsg1-5
oldstable: 2016.11+dfsg1-4
stable: 2019.01+dfsg-7
testing: 2021.01+dfsg-2
unstable: 2021.01+dfsg-2

versioned links

2014.10+dfsg1-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2016.11+dfsg1-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2019.01+dfsg-7: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2021.01+dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

u-boot (4 bugs: 0, 1, 3, 0)
u-boot-amlogic (1 bugs: 0, 0, 1, 0)
u-boot-exynos (2 bugs: 0, 2, 0, 0)
u-boot-imx
u-boot-mvebu
u-boot-omap (1 bugs: 0, 1, 0, 0)
u-boot-qcom
u-boot-qemu
u-boot-rockchip
u-boot-rpi (2 bugs: 0, 2, 0, 0)
u-boot-sifive
u-boot-sunxi (13 bugs: 1, 7, 5, 0)
u-boot-tegra
u-boot-tools (4 bugs: 0, 1, 3, 0)

action needed

A new upstream version is available: 2021.04~rc2 high

A new upstream version 2021.04~rc2 is available, you should consider packaging it.

Created: 2021-02-03 Last update: 2021-03-01 05:06

2 security issues in sid high

There are 2 open security issues in sid.

2 important issues:

CVE-2021-27097: The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT.
CVE-2021-27138: The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT.

Created: 2021-02-20 Last update: 2021-02-25 09:13

2 security issues in bullseye high

There are 2 open security issues in bullseye.

2 important issues:

CVE-2021-27097: The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT.
CVE-2021-27138: The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT.

Created: 2021-02-20 Last update: 2021-02-25 09:13

11 bugs tagged patch in the BTS normal

The BTS contains patches fixing 11 bugs, consider including or untagging them.

Created: 2020-10-19 Last update: 2021-03-01 11:02

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 2021.01+dfsg-3, distribution unstable) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 7f85bfbc61d7f5ea6cfd35b7c51c9bfd3695835f
Merge: 22a56d0dce ba5ea0c5ba
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Mar 1 00:18:48 2021 -0800

    Merge branch 'sid' into debian/master

commit ba5ea0c5baf411bec871cbb68ac14c36e57205cb
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Mar 1 00:00:40 2021 -0800

    Upload u-boot 2021.01+dfsg-3 to unstable.

commit 1ca5d06a76d660213151649514db32a40f090cc4
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sun Feb 28 17:56:06 2021 -0800

    u-boot-install-sunxi: Add support for armhf targets:
      Banana Pi BPI-M2-Ultra
      Banana Pi BPI-M3
      Banana Pi M2 Berry
      Cubietech Cubieboard
      Cubietech Cubieboard2
      Cubietech Cubieboard4
      Cubietech Cubietruck
      Cubietech Cubietruck Plus
      FriendlyARM NanoPi NEO Air
      Lamobo R1
      LeMaker Banana Pi
      LeMaker Banana Pro
      LinkSprite pcDuino
      LinkSprite pcDuino3
      Olimex A10-OLinuXino-LIME
      Olimex A10s-Olinuxino Micro
      Olimex A20-Olimex-SOM-EVB
      Olimex A20-OLinuXino-LIME
      Olimex A20-Olinuxino Micro
      PineRiver Mini X-Plus
      Xunlong Orange Pi Plus / Plus 2
      Xunlong Orange Pi Zero
    
    Thanks to harry88 for the suggestion and initial patch.

commit ae938fbaab11674e4fbdedd81b5bd3fed9a82f96
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sun Feb 28 17:51:05 2021 -0800

    u-boot-install-sunxi: Make installing .itb files optional.

commit 7c66b963476631f02b4052d36cebefe6cc461c95
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Wed Feb 17 18:40:08 2021 +0100

    Enable version 1.1 of the pinephone (Closes: #982981)

commit 524a5f7a0069792e1ff5729d28900e925a79017d
Author: harry88@gmx.ph <harry88@gmx.ph>
Date:   Mon Feb 8 06:36:36 2021 +0100

    u-boot-install-sunxi: Avoid overriding files in current directory
    (Closes: #982278)
    
    Salsa commit 4f2f06b8 for the u-boot package introduced a bug in the
    u-boot-install-sunxi script that could inadvertently overwrite the
    user's own files.  By removing the "mktemp -d" and the "cd", it means
    the "mbr-sign" and "gpt-sign" files now get created in the current
    directory, which would be unfortunate if there happened to be any user
    files with those names.

commit bce41d98f930e4a0d66effd709b58612a3e303ca
Author: Andreas B. Mundt <andi@debian.org>
Date:   Mon Feb 15 20:06:03 2021 +0100

    Fix white space.

commit 387fede1f43dcd6fe500dce6a8e3628d90dd21fa
Author: Andreas B. Mundt <andi@debian.org>
Date:   Mon Feb 15 19:03:09 2021 +0000

    Update u-boot-install-sunxi: Add Olimex A20-OLinuXino-LIME2-eMMC

commit 9aa36e25701ab4f1964ba322a8596de9147319f0
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Feb 2 17:21:55 2021 -0800

    debian/watch: Fix missing "/".
    
    Without this, uscan was able to detect new versions, but failed to
    actually download them.

commit a519167ebe8d814a55e1bd1485ea943a301e6223
Author: Domenico Andreoli <domenico.andreoli@linux.com>
Date:   Sat Jan 30 10:27:54 2021 +0100

    u-boot-install-sunxi: Add support for some armhf

commit 22a56d0dce28737efb92b4c18762fd6448efc2e3
Merge: fdfd24c89c 767582cd4c
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Feb 16 15:53:04 2021 -0800

    Merge tag 'v2021.04-rc2' into debian/master
    
    Prepare v2021.04-rc2

commit fdfd24c89cb28444ca5a23a8483d144074f8aeb3
Author: Andreas B. Mundt <andi@debian.org>
Date:   Mon Feb 15 20:06:03 2021 +0100

    Fix white space.

commit ef3385567aaef7eb1c2559787b059f9f6c4b6138
Author: Andreas B. Mundt <andi@debian.org>
Date:   Mon Feb 15 19:03:09 2021 +0000

    Update u-boot-install-sunxi: Add Olimex A20-OLinuXino-LIME2-eMMC

commit 7b2b40e1920d0e8838d9a5edf01e6aff658a64a2
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Feb 2 17:21:55 2021 -0800

    debian/watch: Fix missing "/".
    
    Without this, uscan was able to detect new versions, but failed to
    actually download them.

commit 5479793122c1faf33f4fb6c0b5ac9432f8d5888f
Merge: fee40ab0be 1aa9c3b930
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Feb 2 17:04:28 2021 -0800

    Merge tag 'v2021.04-rc1' into debian/master
    
    Prepare v2021.04-rc1

commit fee40ab0be10b0f78aa49ba439f762e0dcfec722
Merge: 5c8ae640f5 92f637eda9
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sun Jan 31 01:55:28 2021 +0000

    Merge branch 'install-sunxi_add_some_armhf' into 'master'
    
    Add support for some armhf to u-boot-install-sunxi
    
    See merge request debian/u-boot!15

commit 92f637eda92fd01ef492724dcf31033d329313fe
Author: Domenico Andreoli <domenico.andreoli@linux.com>
Date:   Sat Jan 30 10:27:54 2021 +0100

    u-boot-install-sunxi: Add support for some armhf

commit 5c8ae640f5303223ef01352c47a42c80ccb68205
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Thu Jan 21 20:38:14 2021 -0800

    Upload u-boot 2021.01+dfsg-2 to unstable.

commit 41bb6a78202f2e9b1f56f20657812a4daf2b5c88
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Thu Jan 21 20:34:25 2021 -0800

    debian/patches: Disable USE_PREBOOT on rockpro64 and pinebook-pro to
    workaround boot failure triggered by USB initialization.
    (Closes: #973323, #980434)
    
    Reported upstream:
    
      https://lists.denx.de/pipermail/u-boot/2021-January/438098.html

commit 5d1de55706a4dc19f6b8c768bc4543f34688820b
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Jan 16 19:50:34 2021 -0800

    Upload u-boot 2021.01+dfsg-1 to unstable.

commit 285a9912d73939a65a0f984c69e08890dbfd5615
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Sat Jan 16 14:11:39 2021 +0100

    Clean python cache (Closes: #980237).

commit d52359c2a62ba42102b66aa6ff6f94114e614b56
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Sat Jan 9 19:08:22 2021 +0100

    Remove obsolete dh_strip override (Closes: #980235).
    
    The dh driver does not call dh_strip anymore on architecture:all
    packages like u-boot-qemu.

commit 219f96ac2186e2f8fb4d87a2f1d0ebfda1c37911
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Sat Jan 9 19:07:04 2021 +0100

    Let dh_strip strip tools (Closes: #980234).
    
    There is no need to reimplement the default behaviour.

commit 7dc804228d71bba1550364a0add78d385603cf29
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Jan 16 16:35:37 2021 -0800

    u-boot-install-rockchip: Add support for "Theobroma Systems RK3399-Q7
    SoM" using the "puma-rk3399" target.
    
    Requires using an alternate offset for u-boot.itb.

commit 7042967771115872a2a55443094ff706bd5deb31
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Jan 16 16:06:35 2021 -0800

    u-boot-rockchip: puma-rk3399: install u-boot.itb.

commit 5bc69edf3f342f03fa3e2ac91c086a5ef192bb61
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Jan 16 13:52:11 2021 -0800

    debian/rules: Unset BL31 to avoid using a value from a different
    platform. Thanks to Nicolas Boulenguez.  (Closes: #979482)

commit 055606cc136a151dbc9d42d4c63ae0b1cb879178
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Wed Jan 6 23:01:16 2021 +0100

    Pass BL31 to puma-rk3399 (Closes: #979482).
    
    The option was missing in debian/targets, so the build system is
    seeing BL31=...rk3328 set in the environment by previous platform.
    This is probably not deliberate.

commit 1728eb3592fbf24a7ddce978299848ab6c7d8b02
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Sat Jan 9 20:46:51 2021 +0100

    Make decision about testing tools more explicit (Closes: #979660).
    
    Replace a shell test with a Make condition so that the logs reflect
    the decision.  Also, the two reasons for which tests may not be
    available are now explicit.

commit 96b110eb21b69883813ae87c4c302e80e33d118e
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Sat Jan 9 20:30:08 2021 +0100

    Clarify scope of TOOLSDIR in debian/rules (Closes: #979658).
    
    The variable is only used in the build-tools target, not at all during
    build-indep.

commit fd488cdddbcf08e180aa490a551aff41c2e51de5
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Sat Jan 9 19:22:22 2021 +0100

    Prefer dh_auto_build to explicit recursive $(MAKE)
    (Closes: #979654)
    
    This tool automatically sets -jN according to DEB_BUILD_OPTIONS.

commit 92217d5ffd288abfae9f512f2b4f0bfc903cabad
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Sat Jan 9 18:58:28 2021 +0100

    Do not spend time searching for an install target in Makefile.
    (Closes: #979650)

commit 7775f71ae9c1145ea8891414d788b327a2486ff2
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Sat Jan 9 19:19:12 2021 +0100

    Remove obsolete maketargets variable (Closes: #979652).

commit 99c16cd9712bcfbde9b5647fc99df509166e7f10
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Fri Jan 8 00:06:04 2021 +0100

    Prefer dh_installdocs to dh_install for tools too (Closes: #979648).

commit 337ec266ba78fccc6af9a219378a7622ddea57ad
Merge: 0129e6e023 c4fddedc48
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 11 12:44:29 2021 -0800

    Merge tag 'v2021.01' into debian/master
    
    Prepare v2021.01

commit 0129e6e023cce50527507d210febb894c1be71f8
Merge: 01cb9d8ec6 62b07b5173
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Thu Jan 7 18:48:13 2021 -0800

    Merge tag 'v2021.01-rc5' into debian/master
    
    Prepare v2021.01-rc5

commit 01cb9d8ec6923a15ca4f7f740b7aaca9e864a6a0
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Thu Jan 7 21:12:43 2021 +0100

    Update references to renamed u-boot-install-sunxi64
    
    This follows 81c170865d89c2e60136d795b0f3de78a1e516bd.
    
    The policy requires a manual page for each executable under /usr/bin,
    including symbolic links.

commit 81c170865d89c2e60136d795b0f3de78a1e516bd
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Thu Jan 7 13:33:27 2021 -0800

    Rename u-boot-install-sunxi64 to u-boot-install-sunxi. Thanks to
    Nicolas Boulenguez. (Closes: #979487)
    
    Install symlink for backwards compatibility. Update manpage.

commit 3a47b966cd41bff80c8312e571bae2420c95fc35
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Thu Jan 7 13:26:25 2021 -0800

    u-boot-install-sunxi64: Drop unused code handling ATF.
    
    This is follow-up for 4f2f06b8f584771f9dc1e12220e81eda36a544f1:
    
      u-boot-install-sunxi64: Drop support for using a FIT generator, just
      use the images generated at build time.

commit f726e4ee4bad6b82e760639635cda2a669dd07c5
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Sat Dec 5 14:49:17 2020 +0100

    Install docs with dh_installdocs instead of dh_install
    (Closes: #979295)
    
    This adds short files but lowers the complexity: debian/u-boot-*.docs
    is more conventional and explicit than an unnamed argument for a local
    shell script called by an executable debhelper script.

commit 2642180f78fc3ea80afcbc947d6aea1cfa166a28
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Wed Jan 6 17:57:42 2021 +0100

    Install examples for tools with dh_installexamples instead of
    dh_install. (Closes: #979295)

commit 230c9d167d34551e0a2683ef87dfd34fa0597c1c
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Wed Jan 6 23:38:58 2021 +0100

    Simplify installation of a link for tegra on arm64 but not armhf
    (Closes: #979486)

commit 69d90f14264968a3eba66efd4ac4206f9fc19a67
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Wed Jan 6 17:31:10 2021 +0100

    Insert an empty line in target list for consistency.
    (Closes: #979485)

commit e815d984b9d9b080998e59b836868e276ecf4ea4
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Wed Jan 6 15:37:21 2021 +0100

    Fix pinephone platform name in u-boot-install-sunxi64.
    (Closes: #979484)
    
    This completes commit 99cbbd1c which fixes aa0c051d.

commit adc75a83f76c431de49982a45831ba1dae58931e
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Jan 5 17:51:49 2021 -0800

    Upload u-boot 2021.01~rc4+dfsg-2 to experimental.

commit 99cbbd1c46ec879e5b848ed23a661aae057b4cc1
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Jan 5 17:49:12 2021 -0800

    debian/targets: Use correct name for "pinephone" target. Fixes FTBFS.

commit 4107c6b54c4a16aad85954bf0cd4d55757b97b8b
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Jan 5 10:17:43 2021 -0800

    Upload u-boot 2021.01~rc4+dfsg-1 to experimental.

commit 32e4aa61739710505cfa780ebe4953e2ed1a426e
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Jan 5 01:54:41 2021 -0800

    debian/targets: Update to use new .itb filename for sunxi systems.

commit 9f55a14e3ff3223aeb262f0cc8033666afc1653f
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Jan 5 01:52:31 2021 -0800

    fix encoding of debian/targets

commit e7bad4ad1143946a5a8aa9a502695353a7916a50
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Jan 5 01:46:57 2021 -0800

    u-boot-install-sunxi64: Add support for new .itb filenames.

commit 495f898a6242ae1b1107faa6448b28b02c6cb738
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 22:33:36 2021 -0800

    debian/rules: Disable use of SCP firmware for sunxi platforms.
    
    Debian does not yet provide the optional SCP firmware described in
    README.sunxi64.

commit a8282b863f3f833b31c4cca1fd94f2334b51bd1f
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 21:51:20 2021 -0800

    u-boot-install-sunxi64: Add support for OrangePi One Plus.

commit 4f2f06b8f584771f9dc1e12220e81eda36a544f1
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 21:45:53 2021 -0800

    u-boot-install-sunxi64: Drop support for using a FIT generator, just
    use the images generated at build time.

commit f17c89e6d93bc9bda020d9bcec9dff6531902cfc
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 21:41:16 2021 -0800

    u-boot-sunxi: Do not install mksunxi_fit_atf, removed upstream.

commit 60ccd4f6a66babc4af562c7d52dab0bcb973fbf0
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 21:34:15 2021 -0800

    [arm64] u-boot-amlogic: Add odroid-n2 target. Thanks to Reco.
    (Closes: #973256)

commit fcef0d5d7ca44f66b95634dbe69d23214d33b9df
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 21:27:32 2021 -0800

    [arm64] u-boot-sunxi: Add orangepi_one_plus target. Thanks to harry88.
    (Closes: #979216)

commit 05bdd61d44badab0e5a883aa36f49d60003b88a9
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 21:23:54 2021 -0800

    debian/control: Update Build-Depends on arm-trusted-firmware.
    
    New supported platforms (g12a, sun50i_h6) will be needed for new
    u-boot platforms.

commit aa0c051d480b661e7e5e511e3bf1e403a6c5b616
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Tue Dec 1 19:31:02 2020 +0100

    Add support for pinephone-1.2. (Closes: #976319)

commit 16a90b95f92e4a670a450c92151dac9210a6b5e8
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 20:57:59 2021 -0800

    debian/control: Add Build-Depends on python3-pkg-resources.

commit 5299bc2f0d6407a5c83879fa707d37f975d90388
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 20:44:18 2021 -0800

    debian/patches: Remove obsolete teres-i patch.

commit 46d30ad116e0b43322633def089af9a34c1aae4f
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Tue Dec 1 19:29:57 2020 +0100

    Refresh patches for v2021.01-rc3 (Closes: #976320).

commit 256df3ceb989193a2165b40596197934553635ef
Merge: 349a7078d6 c15f44acf9
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 20:31:48 2021 -0800

    Merge tag 'v2021.01-rc4' into debian/master
    
    Prepare v2021.01-rc4

commit 349a7078d67f8cd1ef578107b60779d821172caf
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 19:59:50 2021 -0800

    Upload u-boot 2020.10+dfsg-2 to unstable.

commit fee2e2741d3dcd5cc236be467dd24fd067d72436
Merge: 0e26982147 841712c000
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Jan 5 02:46:47 2021 +0000

    Merge branch 'tools_sign' into 'master'
    
    Build u-boot-tools with signature support with OpenSSL
    
    See merge request debian/u-boot!14

commit 0e269821477e4f4e8f13d7f4a01525138f645d7b
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 16:44:00 2021 -0800

    debian/control: Update Build-Depends on lzop.
    
    lzop now sets Multi-Arch: foreign, so we no longer need to
    special-case the dependency for cross-building.

commit 2add3c03ffb05146b6542e7bb6abc9fb81055b8f
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 16:09:52 2021 -0800

    debian/control: Update Standards-Version to 4.5.1.

commit aee15d11597575294c5259830ec6335d6bc2795f
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Jan 4 15:32:44 2021 -0800

    u-boot-qemu: Ship u-boot.rom for the qemu-x86_64 and qemu-x86 targets.
    Thanks to Faidon Liambotis. (Closes: #979107)

commit 817492fa175f7ef645f1f2046c5ddc64c5b06d77
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Thu Dec 3 20:03:23 2020 +0100

    In debian/rules, add prerequisite configs/*_defconfig
    (Closes: #976318)
    
    This lets Make regenerate them if the source ever changes.

commit 6abbd47d7ad6aae07b4c89ec1df4bb7d64923b48
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Tue Dec 1 19:22:47 2020 +0100

    Simplify debian/u-boot-tools.install (Closes: #976318).
    
    It was made executable when dpkg-architecture variables where needed.

commit 119dc74606e2d8fd4842a63dc5b26aab4daa729b
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Tue Dec 1 19:21:02 2020 +0100

    Use specific dh_installman instead of dh_install (Closes: #976318).
    
    For example, dh_installman respects the nodoc build profile.

commit d75672ac4c0680aa7188a0673b855c7a771cd30d
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Tue Dec 1 19:12:25 2020 +0100

    Change behaviour of debian/bin/u-boot-install-* for an unknown device
    tree (Closes: #976315)
    
    When unexpected contents are found in /sys/firmware/devicetree/base/model,
    
    * debian/bin/u-boot-install-rockchip reports
      'ERROR: Unknown system: /sys/firmware/devicetree/base/model'.
      This is probably not the intention of the script author.
    
    * debian/bin/u-boot-install-sunxi64 selects pine64_plus.
      An error would be safer than a risk of later boot failure.
    
    Let both scripts report an error message including the unknown system
    description instead.
    
    Describe the TARGET environment variable in the manual page.
    
    Adjusted-by: Vagrant Cascadian <vagrant@debian.org>

commit 6268c00e61eb204eac6d114cf41cc921bc953bce
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Tue Dec 1 19:18:33 2020 +0100

    Drop obsolete version restriction in Build-Depends (Closes: #976316).

commit 2419c62e291efe0886e95745886c664d992755d5
Author: Nicolas Boulenguez <nicolas@debian.org>
Date:   Tue Dec 1 19:19:31 2020 +0100

    Update Homepage and uscan configuration (Closes: #976317).

commit 88022988e3a7ac212997b56fecc0c1c86da53cb9
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Oct 24 08:36:24 2020 -0700

    debian/patches: Fix keyboard on Teres-I (Closes: #935035).  Thanks to
    Jonas Smedegaard.

commit e40cba06b8a2684707a1082f8abb7fb0210a7a37
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Oct 24 08:31:48 2020 -0700

    debian/patches: Enable ethernet on A20-OLinuXino-Lime2-eMMC.
    (Closes: #916822).  Thanks to Jonas Smedegaard.

commit 841712c00018d3e3080ad0b30411aa818deb793b
Author: Luca Boccassi <luca.boccassi@microsoft.com>
Date:   Mon Oct 19 18:56:07 2020 +0100

    Build u-boot-tools with signature support with OpenSSL
    
    The FTP team has revised the policy of linking GPL binaries against
    OpenSSL, and it is now allowed. Build-depend on libssl-dev and remove
    override of CONFIG_FIT_SIGNATURE from debian/rules.
    
    Closes: #972513

commit 6284262334b7bf46e20037a805b8ed31cc982aad
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Oct 5 12:15:06 2020 -0700

    Upload u-boot 2020.10+dfsg-1 to unstable.

commit 8ba295dc1a2563d2c9cae0e441cde6bcc0d088fc
Merge: 26e751bd3d 050acee119
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Oct 5 11:03:24 2020 -0700

    Merge tag 'v2020.10' into debian/master
    
    Prepare v2020.10

commit 26e751bd3dce1fd598999efae32875601399e06b
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Sep 21 20:55:53 2020 -0700

    Upload u-boot 2020.10~rc5+dfsg-1 to experimental.

commit 3667147f1a0945fa9c68129459a71998798f8bca
Merge: c8b20a13db ba2a0cbb05
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Mon Sep 21 20:30:32 2020 -0700

    Merge tag 'v2020.10-rc5' into debian/master
    
    Prepare v2020.10-rc5

commit c8b20a13dbf42b04d0a8f887d61c70d44daecda5
Merge: 31a9f65491 da3c099a1f
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sun Sep 20 21:40:51 2020 +0000

    Merge branch 'use-https-for-homepage' into 'master'
    
    control: Use https for upstream homepage
    
    See merge request debian/u-boot!13

commit da3c099a1f269d1f438fe7b18ff15b79a59ac6f9
Author: Uwe Kleine-König <ukleinek@debian.org>
Date:   Mon Sep 14 21:56:33 2020 +0200

    control: Use https for upstream homepage

commit 31a9f654915895f45832178e22bea5d43d0a8f32
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Aug 29 19:30:24 2020 -0700

    debian/control: u-boot-qemu: Set Multi-Arch: foreign.

commit 29512947fe41289ca68e3f118591965d7174b5a5
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Aug 29 16:05:14 2020 -0700

    Upload u-boot 2020.10~rc3+dfsg-1 to experimental.

commit 1d2c0b05608b176741e67f09fcff7d94bafdd796
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Aug 29 15:57:34 2020 -0700

    debian/copyright: Update for 2020.10-rc3

commit 4736387ce310eedb40353bc9b38e86e64616f79d
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Fri Jul 31 13:17:46 2020 -0700

    u-boot-qemu: Build firmware for qemu ppc e500 (Closes: #966624).

commit 7cfe626af1d7a1a0fa75d967de695aa7caec7b52
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Aug 29 14:36:39 2020 -0700

    [arm64] u-boot-rockchip: Update rock-pi-4 .dtb names.

commit 2b2955d5d1dd13f030626335b334db261ce45840
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Aug 29 13:40:03 2020 -0700

    debian/patches: Remove sh4 linker patch, obsoleted upstream.

commit 129db016247ce897b9291b77f217bc444e289ad7
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Aug 29 13:37:17 2020 -0700

    debian/patches: Remove add-kwb target patch, obsoleted upstream.

commit 8cc15fd1cf11ecf3181e36740117c00b78161d13
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Aug 29 13:13:57 2020 -0700

    debian/patches: Refresh patches.

commit 4ec6af8abd9dcfc378d0cde8f353685ca8bd33c3
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Aug 29 13:10:22 2020 -0700

    debian/patches: Remove patches applied upstream.

commit 7d694f4a2ab32079232ac1c22c4eb234accb0e2f
Merge: 8e3262077d f87c80ade3
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sat Aug 29 13:01:01 2020 -0700

    Merge tag 'v2020.10-rc3' into debian/master
    
    Prepare v2020.10-rc3

commit 8e3262077dcd10db0a7cfd60180fd3a3840c42c5
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Fri Aug 28 23:06:21 2020 -0700

    [armhf] u-boot-sunxi: Add Bananapi_M2_Ultra (Closes: #962931). Thanks
    to Bernhard Wörner.

commit 45738dd21dae3e9cbfe4b18e78b1c77b996eefe4
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Fri Aug 28 16:38:13 2020 -0700

    Upload u-boot 2020.07+dfsg-2 to unstable.

commit 21c57249a3186e83141f8872aaa443328ad704b0
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Tue Jul 28 11:28:32 2020 -0700

    Update patch fixing reproducibility of mx6cuboxi.

commit 319b69c398d22d445e332871631ea86e761501b7
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Sun Jul 26 12:29:55 2020 -0700

    debian/patches: Fix reproducibility of mx6cuboxi target.

commit 673721210d098b0c619d0883086df475620afd5b
Merge: ab64cafb5e 1056f899f0
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Thu Jul 23 02:44:00 2020 +0000

    Merge branch 'wip/d4s/rpi_arm64' into 'master'
    
    u-boot-rpi: Add rpi_arm64 target for arm64
    
    See merge request debian/u-boot!12

commit 1056f899f08124be360e53c27f84165f1151269f
Author: Denis Pynkin <denis.pynkin@collabora.com>
Date:   Wed May 27 12:03:30 2020 +0300

    u-boot-rpi: Add rpi_arm64 target for arm64
    
    This target allow to use the same 64b U-Boot binary for both
    Raspberry Pi 3 and 4 versions. Tested the boot with both boards.
    
    Signed-off-by: Denis Pynkin <denis.pynkin@collabora.com>

commit ab64cafb5ee1009b5cdfce8fd68b4449b0bdc13f
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Thu Jul 9 20:06:08 2020 -0700

    u-boot-install-rockchip: Update with additional RockPro64 names from
    linux 5.7 device-trees.

commit 1e9a0eab3aac66a665423a5b75da66e2172f13ef
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Wed Jul 8 16:30:35 2020 -0700

    Upload u-boot 2020.07+dfsg-1 to unstable.

commit 481b6d54db79e9d0f051b0b93cc9b3d68d7fd3af
Author: Vagrant Cascadian <vagrant@debian.org>
Date:   Wed Jul 8 08:41:51 2020 -0700

    debian/control: Update Build-Depends on arm-trusted-firmware.

Created: 2021-01-31 Last update: 2021-03-01 09:34

lintian reports 3 warnings normal

Lintian reports 3 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2021-01-27 Last update: 2021-01-27 03:05

23 low-priority security issues in stretch low

There are 23 open security issues in stretch.

23 issues left for the package maintainer to handle:

CVE-2019-11059: (needs triaging) Das U-Boot 2016.11-rc1 through 2019.04 mishandles the ext4 64-bit extension, resulting in a buffer overflow.
CVE-2019-11690: (needs triaging) gen_rand_uuid in lib/uuid.c in Das U-Boot v2014.04 through v2019.04 lacks an srand call, which allows attackers to determine UUID values in scenarios where CONFIG_RANDOM_UUID is enabled, and Das U-Boot is relied upon for UUID values of a GUID Partition Table of a boot device.
CVE-2019-13103: (needs triaging) A crafted self-referential DOS partition table will cause all Das U-Boot versions through 2019.07-rc4 to infinitely recurse, causing the stack to grow infinitely and eventually either crash or overwrite other data.
CVE-2019-13104: (needs triaging) In Das U-Boot versions 2016.11-rc1 through 2019.07-rc4, an underflow can cause memcpy() to overwrite a very large amount of data (including the whole stack) while reading a crafted ext4 filesystem.
CVE-2019-13105: (needs triaging) Das U-Boot versions 2019.07-rc1 through 2019.07-rc4 can double-free a cached block of data when listing files in a crafted ext4 filesystem.
CVE-2019-13106: (needs triaging) Das U-Boot versions 2016.09 through 2019.07-rc4 can memset() too much data while reading a crafted ext4 filesystem, which results in a stack buffer overflow and likely code execution.
CVE-2019-14192: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call.
CVE-2019-14193: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfs_readlink_reply, in the "if" block after calculating the new path length.
CVE-2019-14194: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv2 case.
CVE-2019-14195: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfs_readlink_reply in the "else" block after calculating the new path length.
CVE-2019-14196: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_lookup_reply.
CVE-2019-14197: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is a read of out-of-bounds data at nfs_read_reply.
CVE-2019-14198: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.
CVE-2019-14199: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an *udp_packet_handler call.
CVE-2019-14200: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: rpc_lookup_reply.
CVE-2019-14201: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_lookup_reply.
CVE-2019-14202: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_readlink_reply.
CVE-2019-14203: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_mount_reply.
CVE-2019-14204: (needs triaging) An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_umountall_reply.
CVE-2020-10648: (needs triaging) Das U-Boot through 2020.01 allows attackers to bypass verified boot restrictions and subsequently boot arbitrary images by providing a crafted FIT image to a system configured to boot the default configuration.
CVE-2020-8432: (needs triaging) In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c do_rename_gpt_parts() function. Double freeing may result in a write-what-where condition, allowing an attacker to execute arbitrary code. NOTE: this vulnerablity was introduced when attempting to fix a memory leak identified by static analysis.
CVE-2021-27097: (postponed; to be fixed through a stable update) The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT.
CVE-2021-27138: (postponed; to be fixed through a stable update) The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT.

You can find information about how to handle these issues in the security team's documentation.

Created: 2021-02-19 Last update: 2021-02-25 09:13

21 low-priority security issues in buster low

There are 21 open security issues in buster.

2 issues left for the package maintainer to handle:

CVE-2021-27097: (needs triaging) The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT.
CVE-2021-27138: (needs triaging) The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT.

You can find information about how to handle these issues in the security team's documentation.

19 ignored issues:

CVE-2019-13103: A crafted self-referential DOS partition table will cause all Das U-Boot versions through 2019.07-rc4 to infinitely recurse, causing the stack to grow infinitely and eventually either crash or overwrite other data.
CVE-2019-13104: In Das U-Boot versions 2016.11-rc1 through 2019.07-rc4, an underflow can cause memcpy() to overwrite a very large amount of data (including the whole stack) while reading a crafted ext4 filesystem.
CVE-2019-13105: Das U-Boot versions 2019.07-rc1 through 2019.07-rc4 can double-free a cached block of data when listing files in a crafted ext4 filesystem.
CVE-2019-13106: Das U-Boot versions 2016.09 through 2019.07-rc4 can memset() too much data while reading a crafted ext4 filesystem, which results in a stack buffer overflow and likely code execution.
CVE-2019-14192: An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call.
CVE-2019-14193: An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfs_readlink_reply, in the "if" block after calculating the new path length.
CVE-2019-14194: An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv2 case.
CVE-2019-14195: An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfs_readlink_reply in the "else" block after calculating the new path length.
CVE-2019-14196: An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_lookup_reply.
CVE-2019-14197: An issue was discovered in Das U-Boot through 2019.07. There is a read of out-of-bounds data at nfs_read_reply.
CVE-2019-14198: An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.
CVE-2019-14199: An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an *udp_packet_handler call.
CVE-2019-14200: An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: rpc_lookup_reply.
CVE-2019-14201: An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_lookup_reply.
CVE-2019-14202: An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_readlink_reply.
CVE-2019-14203: An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_mount_reply.
CVE-2019-14204: An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_umountall_reply.
CVE-2020-10648: Das U-Boot through 2020.01 allows attackers to bypass verified boot restrictions and subsequently boot arbitrary images by providing a crafted FIT image to a system configured to boot the default configuration.
CVE-2020-8432: In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c do_rename_gpt_parts() function. Double freeing may result in a write-what-where condition, allowing an attacker to execute arbitrary code. NOTE: this vulnerablity was introduced when attempting to fix a memory leak identified by static analysis.

Created: 2021-02-19 Last update: 2021-02-25 09:13

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2017-10-26 Last update: 2017-10-26 07:23

testing migrations

This package will soon be part of the auto-openssl transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[rss feed]

[2021-03-01] Accepted u-boot 2021.01+dfsg-3 (source) into unstable (Vagrant Cascadian)
[2021-01-27] u-boot 2021.01+dfsg-2 MIGRATED to testing (Debian testing watch)
[2021-01-22] Accepted u-boot 2021.01+dfsg-2 (source) into unstable (Vagrant Cascadian)
[2021-01-17] Accepted u-boot 2021.01+dfsg-1 (source) into unstable (Vagrant Cascadian)
[2021-01-10] u-boot 2020.10+dfsg-2 MIGRATED to testing (Debian testing watch)
[2021-01-06] Accepted u-boot 2021.01~rc4+dfsg-2 (source) into experimental (Vagrant Cascadian)
[2021-01-05] Accepted u-boot 2021.01~rc4+dfsg-1 (source) into experimental (Vagrant Cascadian)
[2021-01-05] Accepted u-boot 2020.10+dfsg-2 (source) into unstable (Vagrant Cascadian)
[2020-10-11] u-boot 2020.10+dfsg-1 MIGRATED to testing (Debian testing watch)
[2020-10-05] Accepted u-boot 2020.10+dfsg-1 (source) into unstable (Vagrant Cascadian)
[2020-09-22] Accepted u-boot 2020.10~rc5+dfsg-1 (source) into experimental (Vagrant Cascadian) (signed by: Uwe Kleine-König)
[2020-09-03] u-boot 2020.07+dfsg-2 MIGRATED to testing (Debian testing watch)
[2020-08-29] Accepted u-boot 2020.10~rc3+dfsg-1 (source) into experimental (Vagrant Cascadian)
[2020-08-29] Accepted u-boot 2020.07+dfsg-2 (source) into unstable (Vagrant Cascadian)
[2020-07-15] u-boot 2020.07+dfsg-1 MIGRATED to testing (Debian testing watch)
[2020-07-09] Accepted u-boot 2020.07+dfsg-1 (source) into unstable (Vagrant Cascadian)
[2020-06-10] Accepted u-boot 2020.07~rc4+dfsg-1 (source) into experimental (Vagrant Cascadian)
[2020-06-04] Accepted u-boot 2020.07~rc3+dfsg-1 (source) into experimental (Vagrant Cascadian)
[2020-05-19] Accepted u-boot 2020.07~rc2+dfsg-1 (source) into experimental (Vagrant Cascadian)
[2020-04-26] u-boot 2020.04+dfsg-2 MIGRATED to testing (Debian testing watch)
[2020-04-21] Accepted u-boot 2020.04+dfsg-2 (source) into unstable (Vagrant Cascadian)
[2020-04-20] u-boot 2020.04+dfsg-1 MIGRATED to testing (Debian testing watch)
[2020-04-15] Accepted u-boot 2020.04+dfsg-1 (source) into unstable (Vagrant Cascadian)
[2020-04-07] Accepted u-boot 2020.04~rc5+dfsg-1 (source) into experimental (Vagrant Cascadian)
[2020-02-18] u-boot 2020.01+dfsg-2 MIGRATED to testing (Debian testing watch)
[2020-02-13] Accepted u-boot 2020.04~rc2+dfsg-1 (source) into experimental (Vagrant Cascadian)
[2020-02-13] Accepted u-boot 2020.01+dfsg-2 (source) into unstable (Vagrant Cascadian)
[2020-01-13] u-boot 2020.01+dfsg-1 MIGRATED to testing (Debian testing watch)
[2020-01-08] Accepted u-boot 2020.01+dfsg-1 (source) into unstable (Vagrant Cascadian)
[2019-12-18] Accepted u-boot 2020.01~rc5+dfsg-1 (source) into experimental (Vagrant Cascadian)

bugs [bug history graph]

all: 44
RC: 1
I&N: 18
M&W: 25
F&P: 0
patch: 11

links

homepage
lintian (0, 3)
buildd: logs, checks, clang, reproducibility
popcon
browse source code
edit tags
other distros
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2020.10+dfsg-1ubuntu6
22 bugs (2 patches)
patches for 2020.10+dfsg-1ubuntu6