diff --git a/repair-dwarves-causes-kernel-compilation-to-fail.patch b/1000-repair-dwarves-causes-kernel-compilation-to-fail.patch similarity index 100% rename from repair-dwarves-causes-kernel-compilation-to-fail.patch rename to 1000-repair-dwarves-causes-kernel-compilation-to-fail.patch diff --git a/download b/download index ef5bc7c59c09b9a3f62a3d26ecfa0187dae1ae1a..0dba9637fb40705f52f1dd1a3193df26737442fe 100644 --- a/download +++ b/download @@ -1,3 +1,3 @@ -4f15e3c78f668c32bef2f2061a3833fc kernel-abi-stablelists-4.18.0-553.tar.bz2 +bb2a15373d399432d4670f42b239c56a kernel-abi-stablelists-4.18.0-553.tar.bz2 dacb6c59855053065f7f64fcfb9aa828 kernel-kabi-dw-4.18.0-553.tar.bz2 -87385d7e44b384fe26853fa58b170fdb linux-4.18.0-553.64.1.el8_10.tar.xz +791dda89a9f40cc474d03e09776e8ee9 linux-4.18.0-553.66.1.el8_10.tar.xz diff --git a/kernel.spec b/kernel.spec index 306988259259a42b1efe5f5296c0824eae7e4afa..d85f65f60a349e51e78f57177537f579264d2ada 100644 --- a/kernel.spec +++ b/kernel.spec @@ -39,10 +39,10 @@ # define buildid .local %define specversion 4.18.0 -%define pkgrelease 553.64.1.el8_10 +%define pkgrelease 553.66.1.el8_10 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 553.64.1%{anolis_release}%{?dist} +%define specrelease 553.66.1%{anolis_release}%{?dist} %define pkg_release %{specrelease}%{?buildid} @@ -550,7 +550,7 @@ Source4001: rpminspect.yaml # empty final patch to facilitate testing of kernel patches Patch999999: linux-kernel-test.patch -Patch1000: repair-dwarves-causes-kernel-compilation-to-fail.patch +Patch1000: 1000-repair-dwarves-causes-kernel-compilation-to-fail.patch # END OF PATCH DEFINITIONS @@ -1108,7 +1108,7 @@ mv linux-%{specversion}-%{pkgrelease} linux-%{KVERREL} cd linux-%{KVERREL} ApplyOptionalPatch linux-kernel-test.patch -%patch1000 -p0 -b .repair-dwarves-causes-kernel-compilation-to-fail +%patch1000 -p0 -b .1000-repair-dwarves-causes-kernel-compilation-to-fail # END OF PATCH APPLICATIONS @@ -2708,9 +2708,30 @@ fi # # %changelog -* Tue Jul 29 2025 Xiaoping Liu - 4.18.0-553.64.1.0.1 +* Thu Aug 07 2025 Xiaoping Liu - 4.18.0-553.66.1.0.1 - kernel:repair dwarves causes kernel compilation to fail +* Mon Jul 28 2025 Denys Vlasenko [4.18.0-553.66.1.el8_10] +- net_sched: hfsc: Address reentrant enqueue adding class to eltree twice (Xin Long) [RHEL-105415] {CVE-2025-38001} +- sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (Xin Long) [RHEL-105415] {CVE-2025-38000} +- net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc (CKI Backport Bot) [RHEL-105415] {CVE-2025-37890} +- sch_hfsc: make hfsc_qlen_notify() idempotent (Xin Long) [RHEL-105415] +- crypto: algif_hash - fix double free in hash_accept (CKI Backport Bot) [RHEL-102223] {CVE-2025-38079} +- Revert "smb: client: fix TCP timers deadlock after rmmod" (Paulo Alcantara) [RHEL-100698] {CVE-2025-22077} +- Revert "smb: client: Fix netns refcount imbalance causing leaks and use-after-free" (Paulo Alcantara) [RHEL-100698] +- smb: client: Fix netns refcount imbalance causing leaks and use-after-free (Paulo Alcantara) [RHEL-100698] +- smb: client: fix TCP timers deadlock after rmmod (Paulo Alcantara) [RHEL-100698] {CVE-2024-54680} +- smb: client: Fix use-after-free of network namespace. (Paulo Alcantara) [RHEL-100698] {CVE-2024-53095} +- smb: client: fix warning in generic_ip_connect() (Paulo Alcantara) [RHEL-100698] +- net: tipc: fix refcount warning in tipc_aead_encrypt (Xin Long) [RHEL-103079] +- net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done (CKI Backport Bot) [RHEL-103079] {CVE-2025-38052} +- memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove (CKI Backport Bot) [RHEL-99013] {CVE-2025-22020} +- HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove() (CKI Backport Bot) [RHEL-98837] {CVE-2025-21928} + +* Thu Jul 24 2025 Denys Vlasenko [4.18.0-553.65.1.el8_10] +- x86/alternatives: avoid mapping FIX_TEXT_POKE1 page when it is not required (Rafael Aquini) [RHEL-95422] +- ext4: avoid resizing to a partial cluster size (CKI Backport Bot) [RHEL-101423] {CVE-2022-50020} + * Wed Jul 23 2025 Denys Vlasenko [4.18.0-553.64.1.el8_10] - sched/fair: Fix potential memory corruption in child_cfs_rq_on_list (CKI Backport Bot) [RHEL-100387] {CVE-2025-21919} - NFSv4/pNFS: Fix a race to wake on NFS_LAYOUT_DRAIN (Benjamin Coddington) [RHEL-86256]