diff --git a/download b/download
index 5ec10b995747d546035b4b123836b09bbb67cd66..a4fd98251a3c90adb7f70158b11321f70e8e346e 100644
--- a/download
+++ b/download
@@ -1,3 +1,3 @@
-000da879ab80be87f42b1458d2f53091  kernel-abi-stablelists-4.18.0-372.tar.bz2
-0c2235bf682794acb40bf46f8b2252d1  kernel-kabi-dw-4.18.0-372.tar.bz2
-3d7b95dc6fdd4ef8bc380d519763aaa4  linux-4.18.0-372.16.1.el8_6.tar.xz
+60bdb2c605b0595653eaad48ae46c609  kernel-abi-stablelists-4.18.0-372.tar.bz2
+7421b42c3ef4a44cc0b88de651f6624f  kernel-kabi-dw-4.18.0-372.tar.bz2
+ceaf81f3d48c7470afcc110e9503e66c  linux-4.18.0-372.19.1.el8_6.tar.xz
diff --git a/kernel.spec b/kernel.spec
index c88ede39bf67489c128adf5c424c0d6c009ff2f3..4a9943bcda0e27118df4964291893607a93b326a 100644
--- a/kernel.spec
+++ b/kernel.spec
@@ -42,10 +42,10 @@
 # define buildid .local
 
 %define rpmversion 4.18.0
-%define pkgrelease 372.16.1.el8_6
+%define pkgrelease 372.19.1.el8_6
 
 # allow pkg_release to have configurable %%{?dist} tag
-%define specrelease 372.16.1%{?dist}
+%define specrelease 372.19.1%{?dist}
 
 %define pkg_release %{specrelease}%{?buildid}
 
@@ -2652,6 +2652,58 @@ fi
 #
 #
 %changelog
+* Mon Jul 18 2022 Augusto Caringi <acaringi@redhat.com> [4.18.0-372.19.1.el8_6]
+- net/mlx5: CT: Fix header-rewrite re-use for tupels (Amir Tzin) [2104013 2101162]
+- net/mlx5e: TC, Fix ct_clear overwriting ct action metadata (Amir Tzin) [2104012 2100474]
+- netfilter: flowtable: fix TCP flow teardown (Florian Westphal) [2104002 2088234]
+- netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2104002 2088234]
+- netfilter: conntrack: initialize ct->timeout (Florian Westphal) [2104002 2088234]
+- net/sched: act_police: more accurate MTU policing (Davide Caratti) [2102333 2100893]
+- bpf: Fix request_sock leak in sk lookup helpers (Antoine Tenart) [2104670 2085313]
+
+* Wed Jul 13 2022 Augusto Caringi <acaringi@redhat.com> [4.18.0-372.18.1.el8_6]
+- redhat: flesh out rpminspect config file (Jarod Wilson)
+- powerpc/pseries/ddw: Revert "Extend upper limit for huge DMA window for persistent memory" (Steve Best) [2100150 2056080]
+- vdpa: mlx5: synchronize driver status with CVQ (Jason Wang) [2093416 2048009]
+- vdpa: mlx5: prevent cvq work from hogging CPU (Jason Wang) [2093416 2048009]
+- vdpa/mlx5: Avoid processing works if workqueue was destroyed (Cindy Lu) [2093416 2048009]
+- cifs: fix potential double free during failed mount (Ronnie Sahlberg) [2102251 2088799]
+
+* Sat Jul 09 2022 Augusto Caringi <acaringi@redhat.com> [4.18.0-372.17.1.el8_6]
+- tcp: drop the hash_32() part from the index calculation (Guillaume Nault) [2087130 2064876] {CVE-2022-1012}
+- tcp: increase source port perturb table to 2^16 (Guillaume Nault) [2087130 2064876] {CVE-2022-1012}
+- tcp: dynamically allocate the perturb table used by source ports (Guillaume Nault) [2087130 2064876] {CVE-2022-1012}
+- tcp: add small random increments to the source port (Guillaume Nault) [2087130 2064876] {CVE-2022-1012}
+- tcp: resalt the secret every 10 seconds (Guillaume Nault) [2087130 2064876] {CVE-2022-1012}
+- tcp: use different parts of the port_offset for index and offset (Guillaume Nault) [2087130 2064876] {CVE-2022-1012}
+- secure_seq: use the 64 bits of the siphash for port offset calculation (Guillaume Nault) [2087130 2064876] {CVE-2022-1012}
+- tcp: add some entropy in __inet_hash_connect() (Guillaume Nault) [2087130 2064876] {CVE-2022-1012}
+- tcp: change source port randomizarion at connect() time (Guillaume Nault) [2087130 2064876] {CVE-2022-1012}
+- hrtimer: Unbreak hrtimer_force_reprogram() (Fernando Pacheco) [2090484 2071776]
+- hrtimer: Use raw_cpu_ptr() in clock_was_set() (Fernando Pacheco) [2090484 2071776]
+- hrtimer: Avoid more SMP function calls in clock_was_set() (Fernando Pacheco) [2090484 2071776]
+- hrtimer: Avoid unnecessary SMP function calls in clock_was_set() (Fernando Pacheco) [2090484 2071776]
+- hrtimer: Add bases argument to clock_was_set() (Fernando Pacheco) [2090484 2071776]
+- time/timekeeping: Avoid invoking clock_was_set() twice (Fernando Pacheco) [2090484 2071776]
+- timekeeping: Distangle resume and clock-was-set events (Fernando Pacheco) [2090484 2071776]
+- timerfd: Provide timerfd_resume() (Fernando Pacheco) [2090484 2071776]
+- hrtimer: Force clock_was_set() handling for the HIGHRES=n, NOHZ=y case (Fernando Pacheco) [2090484 2071776]
+- hrtimer: Ensure timerfd notification for HIGHRES=n (Fernando Pacheco) [2090484 2071776]
+- hrtimer: Consolidate reprogramming code (Fernando Pacheco) [2090484 2071776]
+- hrtimer: Avoid double reprogramming in __hrtimer_start_range_ns() (Fernando Pacheco) [2090484 2071776]
+- hrtimer: Update softirq_expires_next correctly after __hrtimer_get_next_event() (Fernando Pacheco) [2090484 2071776]
+- hrtimer: Annotate lockless access to timer->state (Fernando Pacheco) [2090484 2071776]
+- mm, compaction: fast_find_migrateblock() should return pfn in the target zone (Rafael Aquini) [2100529 2067130]
+- lib/sbitmap: fix sb->map leak (Ming Lei) [2100254 2093549]
+- scsi: core: Fix sbitmap depth in scsi_realloc_sdev_budget_map() (Ewan D. Milne) [2100254 2071831]
+- lib/sbitmap: allocate sb->map via kvzalloc_node (Ewan D. Milne) [2100254 2071831]
+- mm: move kvmalloc-related functions to slab.h (Ewan D. Milne) [2100254 2071831]
+- scsi: core: Reallocate device's budget map on queue depth change (Ewan D. Milne) [2100254 2071831]
+- scsi: core: Fix scsi_device_max_queue_depth() (Ewan D. Milne) [2100254 2071831]
+- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2092986 2092987] {CVE-2022-32250}
+- audit: improve audit queue handling when "audit=1" on cmdline (Richard Guy Briggs) [2095434 2035123]
+- audit: improve robustness of the audit queue handling (Richard Guy Briggs) [2095434 2035123]
+
 * Tue Jun 28 2022 Frantisek Hrbata <fhrbata@redhat.com> [4.18.0-372.16.1.el8_6]
 - x86/platform/uv: Log gap hole end size (Frank Ramsay) [2084645 2074098]
 - x86/platform/uv: Update TSC sync state for UV5 (Frank Ramsay) [2084645 2074098]