Grub2 Debian Security Advisory

[h0tw1r3]

I checked the zfs-grub git repo, but I don't see any updates since the end of 2019.

Will the Proxmox team be updating the grub packages to address this advisory soon?

If not, is it safe to replace with the upstream non-pve versions if we're not using zfs?

https://www.debian.org/security/2020/dsa-4735

 

[fabian]

I checked the zfs-grub git repo, but I don't see any updates since the end of 2019.

Will the Proxmox team be updating the grub packages to address this advisory soon?

no plans right now since we don't support secure boot/lockdown anyway

If not, is it safe to replace with the upstream non-pve versions if we're not using zfs?

https://www.debian.org/security/2020/dsa-4735

probably, as long as you keep os-prober disabled.