diff --git a/kernel.spec b/kernel.spec index f6366fb..6aeac4e 100644 --- a/kernel.spec +++ b/kernel.spec @@ -38,10 +38,10 @@ # define buildid .local %define specversion 4.18.0 -%define pkgrelease 552.rt7.341.el8 +%define pkgrelease 552.1.1.rt7.342.el8_10 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 552.rt7.341%{?dist} +%define specrelease 552.1.1.rt7.342%{?dist} %define pkg_release %{specrelease}%{?buildid} @@ -53,6 +53,7 @@ # architecture allows it. All should default to 1 (enabled) and be flipped to # 0 (disabled) by later arch-specific checks. +%define _with_kabidupchk 1 # The following build options are enabled by default. # Use either --without in your rpmbuild command or force values # to 0 in here to disable them. @@ -147,7 +148,7 @@ # The preempt RT patch level %global rttag .rt7 # realtimeN -%global rtbuild .341 +%global rtbuild .342 %define with_doc 0 %define with_headers 0 %define with_cross_headers 0 @@ -2698,6 +2699,54 @@ fi # # %changelog +* Sun Apr 28 2024 Denys Vlasenko [4.18.0-552.1.1.rt7.342.el8_10] +- [rt] build kernel-rt-4.18.0-552.1.1.rt7.342.el8_10 [RHEL-34640] +- build: Update RTBZ for 8.10 z-stream builds (Denys Vlasenko) +- redhat: set DIST to el8_10 and ZSTREAM to yes for 8.10 (Denys Vlasenko) +- tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc (Prarit Bhargava) [RHEL-32590] {CVE-2021-47185} +- net: mana: Fix Rx DMA datasize and skb_over_panic (Cathy Avery) [RHEL-32579] +- RDMA/srpt: Support specifying the srpt_service_guid parameter (Kamal Heib) [RHEL-31710] {CVE-2024-26744} +- RDMA/qedr: Fix qedr_create_user_qp error flow (Kamal Heib) [RHEL-31714] {CVE-2024-26743} +- hwmon: (coretemp) Fix out-of-bounds memory access (David Arcari) [RHEL-31305] {CVE-2024-26664} +- RDMA/irdma: Fix KASAN issue with tasklet (Kamal Heib) [RHEL-15776] +- net: bridge: use DEV_STATS_INC() (Ivan Vecera) [RHEL-27989] {CVE-2023-52578} +- net: Fix unwanted sign extension in netdev_stats_to_stats64() (Ivan Vecera) [RHEL-27989] {CVE-2023-52578} +- net: add atomic_long_t to net_device_stats fields (Ivan Vecera) [RHEL-27989] {CVE-2023-52578} +- net/sched: act_ct: fix skb leak and crash on ooo frags (Xin Long) [RHEL-29467] {CVE-2023-52610} +- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Jose Ignacio Tornos Martinez) [RHEL-28015] {CVE-2023-52528} +- RDMA/core: Fix uninit-value access in ib_get_eth_speed() (Kamal Heib) [RHEL-30130] +- RDMA/core: Get IB width and speed from netdev (Kamal Heib) [RHEL-30130] +- cpufreq: intel_pstate: Add Emerald Rapids support in no-HWP mode (Prarit Bhargava) [RHEL-29444] +- powerpc/mm: Fix null-pointer dereference in pgtable_cache_add (Mamatha Inamdar) [RHEL-29118] {CVE-2023-52607} +- powerpc/lib: Validate size for vector operations (Mamatha Inamdar) [RHEL-29114] {CVE-2023-52606} +- usb: hub: Guard against accesses to uninitialized BOS descriptors (Desnes Nunes) [RHEL-28986] {CVE-2023-52477} +- media: uvcvideo: Fix OOB read (Desnes Nunes) [RHEL-27940] {CVE-2023-52565} +- media: pvrusb2: fix use after free on context disconnection (Desnes Nunes) [RHEL-26498] {CVE-2023-52445} +- i2c: i801: Fix block process call transactions (Prarit Bhargava) [RHEL-26478] {CVE-2024-26593} +- overlay: disable EVM (Coiby Xu) [RHEL-19863] +- evm: add support to disable EVM on unsupported filesystems (Coiby Xu) [RHEL-19863] +- evm: don't copy up 'security.evm' xattr (Coiby Xu) [RHEL-19863] +- net: ena: Remove ena_select_queue (Kamal Heib) [RHEL-14286] +- media: dvbdev: Fix memory leak in dvb_media_device_free() (Prarit Bhargava) [RHEL-27254] {CVE-2020-36777} +- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28784] +- i2c: Fix a potential use after free (Prarit Bhargava) [RHEL-26849] {CVE-2019-25162} +- i2c: validate user data in compat ioctl (Prarit Bhargava) [RHEL-27022] {CVE-2021-46934} +- platform/x86: think-lmi: Fix reference leak (Prarit Bhargava) [RHEL-28030] {CVE-2023-52520} +- vhost: use kzalloc() instead of kmalloc() followed by memset() (Jon Maloy) [RHEL-21505] {CVE-2024-0340} +- RDMA/siw: Fix connection failure handling (Kamal Heib) [RHEL-28042] {CVE-2023-52513} +- vt: fix memory overlapping when deleting chars in the buffer (Waiman Long) [RHEL-27778 RHEL-27779] {CVE-2022-48627} +- x86/fpu: Stop relying on userspace for info to fault in xsave buffer (Steve Best) [RHEL-26669] {CVE-2024-26603} +- mptcp: fix double-free on socket dismantle (Davide Caratti) [RHEL-22773] {CVE-2024-26782} +- crypto: akcipher - Disable signing and decryption (Herbert Xu) [RHEL-17114] {CVE-2023-6240} +- crypto: akcipher - default implementations for request callbacks (Herbert Xu) [RHEL-17114] {CVE-2023-6240} +- crypto: testmgr - split akcipher tests by a key type (Herbert Xu) [RHEL-17114] {CVE-2023-6240} +- workqueue: Warn when a rescuer could not be created (Waiman Long) [RHEL-22136] +- RDMA/cma: Avoid GID lookups on iWARP devices (Benjamin Coddington) [RHEL-12456] +- RDMA/cma: Deduplicate error flow in cma_validate_port() (Benjamin Coddington) [RHEL-12456] +- RDMA/core: Set gid_attr.ndev for iWARP devices (Benjamin Coddington) [RHEL-12456] +- RDMA/siw: Fabricate a GID on tun and loopback devices (Benjamin Coddington) [RHEL-12456] +- eventpoll: fix missing wakeup for ovflist in ep_poll_callback (Luis Claudio R. Goncalves) [RHEL-23022] + * Sun Apr 07 2024 Denys Vlasenko [4.18.0-552.rt7.341.el8] - [rt] build kernel-rt-4.18.0-552.rt7.341.el8 [RHEL-5332] - i40e: Enforce software interrupt during busy-poll exit (Ivan Vecera) [RHEL-26248] diff --git a/sources b/sources index 6d5ed43..ee4f1e1 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (linux-4.18.0-552.rt7.341.el8.tar.xz) = 64f0abffde18c346a168156eb1809f7f8fe2cf3b96ddc2b9bc8b594350c710e9c391273a7e5f664961340c691e070172e28b5d0664c1a15a73a914cbe2e99290 +SHA512 (linux-4.18.0-552.1.1.rt7.342.el8_10.tar.xz) = ada8da1eb6b97a059b8d9ac40cc68f72fbfe8957a4cf5b9998ae849ab47f8aac128fcc0de800610c5a636f0e18c63c50a34ad823f55574fbd719a98f578bf99d