Hi, On Sun, 25 Jul 2021 16:52:27 +0100 Steve McIntyre <steve@einval.com> wrote: > When we found that problem, as an immediate workaround I released a > newer shim-signed package into the buster-updates repo which solves > it: version 1.36~1+deb10u2+15.4-5~deb10u1 (note the > deb10u1->deb10u2). I can see that your system is showing > buster-updates in its list of package sources, so I'm very confused as > to what's happened there and why your system did not pick up the later > version. Argh! I learned yesterday that people that use APT pinning or APT::Default-Release may be missing out -updates if they pin to buster only. See the latest entry to the release notes [1, last paragraph] to cover the issue for bullseye-security. I'm obviously not sure if that happened here, but if the issue is the same on ci.d.n infrastructure, it would explain the failure there (the logs from yesterday there mention "Setting up shim-signed:arm64 (1.36~1+deb10u1+15.4-5~deb10u1)". Paul [1] https://www.debian.org/releases/bullseye/amd64/release-notes/ch-information.en.html#security-archive
Attachment:
OpenPGP_signature
Description: OpenPGP digital signature