edk2-stable202602

Release Date 2026-02-21

New Features & Bug Fixes

Fixed Issue List

edk2-stable202511

Release Date 2025-11-21

New Features & Bug Fixes

Fixed Issue List

edk2-stable202508

Release Date 2025-08-22

New Features & Bug Fixes

• update to openssl 3.5.1
• MdeModule: Update oniguruma to v6.9.10
• Support Standalone MM on OVMF
• MdePkg/IndustryStandard: update Tpm2Acpi table to revision 5
• Adding FF-A memory management library
• Add UUID-GUID conversion interfaces in ArmFfaLib
• BaseTools: Add support for mingw-w64
• Remove UGA support
• Add support for ARM GICv5
• RISC-V: Support PEI booting

Fixed Issue List

edk2-stable202505

Release Date 2025-05-23

New Features & Bug Fixes

• NetworkPkg/IScsiDxe:Fix for out of bound memory access for bz4207 (CVE-2024-38805)
• Multiple packages: stop using EmbeddedPkg libfdt
• Adding support for TPM over FF-A on ARM platforms
• SecurityPkg: Prevent invalid DBX from being set
• SecurityPkg: Out of bound read in HashPeImageByType()
• Adding support for MM Communicate v3
• BaseTools: Disable VS2019/2022 ARM/AARCH64 Stack Cookies
• Introduce Redfish Platform Wanted Device Lib
• HobLib: Add two new APIs in HobLib

Fixed Issue List

edk2-stable202502

Release Date 2025-02-21

New Features & Bug Fixes

• DynamicTablesPkg: Adds X64 support to SRAT table generator
• DynamicTablesPkg: Generates X64 MADT and CPU SSDT Topology Table
• Add RNG PPI
• Update to openssl-3.4.x
• Update CI to VS2022
• Produce EFI memory attribute protocol
• UefiCpuPkg: Add TdxMeasurementLib
• DxeRngLib: GetRandomNumber spurious success
• SecurityPkg: Update libspdm
• OvmfPkg: Use the OvmfPkg version of CcProbeLib
• ShellPkg: Fix bug #3080, OOB, minor UefiShellLib fixes
• MdePkg: Fix overflow issue in PeCoffLoaderRelocateImageForRuntime
• Add Dynamic Stack Cookie Support to IA32/X64/AARCH64

Fixed Issue List

edk2-stable202411

Release Date 2024-11-22

New Features & Bug Fixes

• MdeModulePkg: Added PPI support in UFS PEI driver
• DynamicTablesPkg: Adds SPMI table generator
• MdeModulePkg: PeiMain: Add Delayed Dispatch PPI Implementation
• UefiPayloadPkg: Add Secure Boot support
• MdeModulePkg/TerminalDxe: Add VTUTF8 to Putty function key map
• DynamicTablesPkg: Adds ACPI HPET table generator
• Update Openssl 3.0.15
• DynamicTablesPkg: Adds WSMT generator for X64
• Enable UPL support for RISC-V

Bugzilla List

edk2-stable202408.01

Release Date 2024-11-06

What's Changed

• UnitTestFrameworkPkg: Use TianoCore mirror of subhook submodule by @mdkinney in #6407

Full Changelog: edk2-stable202408...edk2-stable202408.01

edk2-stable202408

Release Date 2024-08-23

New Features & Bug Fixes

• CryptoPkg:Add more crypto APIs (AESGCM/PEM/X509/RSA/PKCS5/PKCS7/Authenticode) based on Mbedtls
• CryptoPkg: Enable Openssl native instruction support for AARCH64
• CryptoPkg: Add support for aes128-sha256 and aes256-sha256 cipher
• UefiCpuPkg: S3 cleanup
• MdePkg/BaseLib: Add CRC16 CCITT False Implementation
• DynamicTablesPkg: ACPI TPM2 generator
• DynamicTablesPkg: Prepare for supporting other archs
• BaseTools: Add VS2022 support
• OvmfPkg: Add LoongArchVirt instance to OvmfPkg and enable it

Bugzilla List

edk2-stable202405

Release Date 2024-05-24

New Features & Bug Fixes

• SecurityPkg:Add EFI Device Authentication Signature Database and SPDM
• CryptoPkg:add additional RSAES-OAEP crypto functions
• OvmfPkg:Add 5-level paging support
• OvmfPkg:SEV-SNP Support for running under an SVSM
• OvmfPkg:RBP register shall be cleared in TDVMCALL
• OvmfPkg:Harden #VC instruction emulation (CVE-2024-25742)
• Add SPI bus driver stack
• NetworkPkg: Predictable TCP ISNs
• NetworkPkg: Use of a Weak PseudoRandom Number Generator
• UefiCpuPkg: Add new SmmRelocationLib library

Bugzilla List

Update Notes

• NetworkPkg SECURITY PATCH CVE-2023-45237 requires the platform to provide the right implementation of the EFI_RNG_PROTOCOL
  (i.e., using a GUID that appears in the allowlist) and EFI_HASH2_PROTOCOL. If it is not implemented, the platform will lose the ability to do network boot.

edk2-stable202402

Release Date 2024-02-23

New Features & Bug Fixes

• NetworkPkg: Packet->Length is not updated before being used by Dhcp6AppendIaAddrOption to safely know it can append.
• NetworkPkg: Out-of-bounds read when processing IA_NA/IA_TA options in a DHCPv6 Advertise message
• Heap Buffer Overflow in Tcg2MeasureGptTable()
• Add LoongArch help functions and defines in MdePkg and move some ArmVirtPkg libraries and PCDs to OvmfPkg
• Add NVMe Sanitize command support to Nvme.h
• Remove CSM support from OvmfPkg
• MAT Logic Incorrectly Reports Runtime Images

Bugzilla List