kernel-5.14.0-11.el9

* Thu Oct 28 2021 Herton R. Krzesinski <herton@redhat.com> [5.14.0-11.el9] - selinux: remove the SELinux lockdown implementation (Ondrej Mosnacek) [1940843 1945581] - bpf: Fix integer overflow in prealloc_elems_and_freelist() (Yauheni Kaliuta) [2010494] {CVE-2021-41864} - seltests: bpf: test_tunnel: Use ip neigh (Jiri Benc) [2006326] Resolves: rhbz#1940843, rhbz#1945581, rhbz#2006326, rhbz#2010494 Signed-off-by: Herton R. Krzesinski <herton@redhat.com>
2021-10-28 13:59:03 -04:00 · 2021-10-28 13:59:03 -04:00 · b9d6cd4be6
commit b9d6cd4be6
parent c6771ba6c6
3 changed files with 15 additions and 10 deletions
--- a/Makefile.rhelver
+++ b/Makefile.rhelver
@ -12,7 +12,7 @@ RHEL_MINOR = 0
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 10
+RHEL_RELEASE = 11

 #
 # Early y+1 numbering
--- a/kernel.spec
+++ b/kernel.spec
@ -85,7 +85,7 @@ Summary: The Linux kernel
 #  the --with-release option overrides this setting.)
 %define debugbuildsenabled 1

-%global distro_build 10
+%global distro_build 11

 %if 0%{?fedora}
 %define secure_boot_arch x86_64
@ -129,13 +129,13 @@ Summary: The Linux kernel
 %define kversion 5.14

 %define rpmversion 5.14.0
-%define pkgrelease 10.el9
+%define pkgrelease 11.el9

 # This is needed to do merge window version magic
 %define patchlevel 14

 # allow pkg_release to have configurable %%{?dist} tag
-%define specrelease 10%{?buildid}%{?dist}
+%define specrelease 11%{?buildid}%{?dist}

 %define pkg_release %{specrelease}

@ -676,7 +676,7 @@ BuildRequires: lld
 # exact git commit you can run
 #
 # xzcat -qq ${TARBALL} | git get-tar-commit-id
-Source0: linux-5.14.0-10.el9.tar.xz
+Source0: linux-5.14.0-11.el9.tar.xz

 Source1: Makefile.rhelver

@ -1360,8 +1360,8 @@ ApplyOptionalPatch()
  fi
 }

-%setup -q -n kernel-5.14.0-10.el9 -c
-mv linux-5.14.0-10.el9 linux-%{KVERREL}
+%setup -q -n kernel-5.14.0-11.el9 -c
+mv linux-5.14.0-11.el9 linux-%{KVERREL}

 cd linux-%{KVERREL}
 cp -a %{SOURCE1} .
@ -2952,6 +2952,11 @@ fi
 #
 #
 %changelog
+* Thu Oct 28 2021 Herton R. Krzesinski <herton@redhat.com> [5.14.0-11.el9]
+- selinux: remove the SELinux lockdown implementation (Ondrej Mosnacek) [1940843 1945581]
+- bpf: Fix integer overflow in prealloc_elems_and_freelist() (Yauheni Kaliuta) [2010494] {CVE-2021-41864}
+- seltests: bpf: test_tunnel: Use ip neigh (Jiri Benc) [2006326]
+
 * Tue Oct 26 2021 Herton R. Krzesinski <herton@redhat.com> [5.14.0-10.el9]
 - block: return ELEVATOR_DISCARD_MERGE if possible (Ming Lei) [1991958]
 - blk-mq: avoid to iterate over stale request (Ming Lei) [2009110]
--- a/6
+++ b/6
@ -1,3 +1,3 @@
-SHA512 (linux-5.14.0-10.el9.tar.xz) = 087220b28842df661d4ddcb4c774e811b53dccbdfba65bbc2187183f0f62a3f176ccf0021443ac3ec125c4bbfc65ee92b567edfa30ab18e50fa0298225887366
-SHA512 (kernel-abi-stablelists-5.14.0-10.tar.bz2) = 773663136e85ae65033038606211b3760d69edf1461c299da0f523f05ea3ed0362d13d7400bfb2639ed3b044dd173498f784665e3d16b5eb65c6ad260f996ed6
-SHA512 (kernel-kabi-dw-5.14.0-10.tar.bz2) = abd1b8d40ed8909b75dfd314efb95e2c586cb5200913a3c1ddc10d500410496772005d3b55047a8249e30305a52469c83fbd0add21db7ad141c1f3bf982d0a8a
+SHA512 (linux-5.14.0-11.el9.tar.xz) = 069771dafadf06ca0e9bbccadfc383e6089e095cfbddf334f30cfadc246656fdebc1cb8166ee1aef18c638fa3fea95d82d55a7e93e7ade395c786b94fb008eec
+SHA512 (kernel-abi-stablelists-5.14.0-11.tar.bz2) = 03e4f63aa1923e9e089ebd8902bf57666a8d5629621d050886d61dc4b319b6b46df32f73f9a37b06a67d3eb4784169af1ba11f212299cde2fa153b6354bc87c5
+SHA512 (kernel-kabi-dw-5.14.0-11.tar.bz2) = 9cbbf1b1c46550108d177297d884fb5978ce86a6e59be990a7391ec1ddd9c8a867cfa5a060e0ae883c74f477cdd678f2f199fc4040d9074c332ded2657898b90