From 1fcbb172dd6f70c2f899d55528131aedb7c1d694 Mon Sep 17 00:00:00 2001 From: CKI KWF Bot Date: Wed, 17 Jun 2026 22:22:00 +0000 Subject: [PATCH] kernel-rt-4.18.0-553.135.1.rt7.476.el8_10 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Wed Jun 17 2026 CKI KWF Bot [4.18.0-553.135.1.rt7.476.el8_10] - drm/amd/display: Do not skip unrelated mode changes in DSC validation (José Expósito) [RHEL-178825] {CVE-2026-31488} - sched/deadline: Fix missing ENQUEUE_REPLENISH during PI de-boosting (Juri Lelli) [RHEL-178520] - RDMA/mana_ib: Validate rx_hash_key_len to prevent buffer overflow (Gaurav Goklani) [RHEL-180089] {CVE-2026-46145} - ALSA: aloop: Fix peer runtime UAF during format-change stop (Jaroslav Kysela) [RHEL-179304] {CVE-2026-46090} - ALSA: usb-audio: Add sanity check for OOB writes at silencing (CKI Backport Bot) [RHEL-173939] {CVE-2026-43279} - net: bonding: fix use-after-free in bond_xmit_broadcast() (Xin Long) [RHEL-168063] {CVE-2026-31419} Resolves: RHEL-168063, RHEL-173939, RHEL-178520, RHEL-178825, RHEL-179304, RHEL-180089 Signed-off-by: CKI KWF Bot --- kernel.spec | 14 +++++++++++--- sources | 2 +- 2 files changed, 12 insertions(+), 4 deletions(-) diff --git a/kernel.spec b/kernel.spec index f6cedd7..9ef53ae 100644 --- a/kernel.spec +++ b/kernel.spec @@ -38,10 +38,10 @@ # define buildid .local %define specversion 4.18.0 -%define pkgrelease 553.134.1.rt7.475.el8_10 +%define pkgrelease 553.135.1.rt7.476.el8_10 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 553.134.1.rt7.475%{?dist} +%define specrelease 553.135.1.rt7.476%{?dist} %define pkg_release %{specrelease}%{?buildid} @@ -148,7 +148,7 @@ # The preempt RT patch level %global rttag .rt7 # realtimeN -%global rtbuild .475 +%global rtbuild .476 %define with_doc 0 %define with_headers 0 %define with_cross_headers 0 @@ -2710,6 +2710,14 @@ fi # # %changelog +* Wed Jun 17 2026 CKI KWF Bot [4.18.0-553.135.1.rt7.476.el8_10] +- drm/amd/display: Do not skip unrelated mode changes in DSC validation (José Expósito) [RHEL-178825] {CVE-2026-31488} +- sched/deadline: Fix missing ENQUEUE_REPLENISH during PI de-boosting (Juri Lelli) [RHEL-178520] +- RDMA/mana_ib: Validate rx_hash_key_len to prevent buffer overflow (Gaurav Goklani) [RHEL-180089] {CVE-2026-46145} +- ALSA: aloop: Fix peer runtime UAF during format-change stop (Jaroslav Kysela) [RHEL-179304] {CVE-2026-46090} +- ALSA: usb-audio: Add sanity check for OOB writes at silencing (CKI Backport Bot) [RHEL-173939] {CVE-2026-43279} +- net: bonding: fix use-after-free in bond_xmit_broadcast() (Xin Long) [RHEL-168063] {CVE-2026-31419} + * Fri Jun 12 2026 CKI KWF Bot [4.18.0-553.134.1.rt7.475.el8_10] - wifi: mac80211: remove station if connection prep fails (Jose Ignacio Tornos Martinez) [RHEL-180120] {CVE-2026-46125} - wifi: mac80211: drop stray 'static' from fast-RX rx_result (CKI Backport Bot) [RHEL-180058] {CVE-2026-46152} diff --git a/sources b/sources index 73a954b..9cb0fdb 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (linux-4.18.0-553.134.1.rt7.475.el8_10.tar.xz) = 052d6ce3168e20627f4cb926d8a6b5f540fcf6e2aae1d45f73b6be5a58ee64ac31a99f33ab239cd2feb35bf8d4b122941c2e38025e8921ecf63bfb29aabc0497 +SHA512 (linux-4.18.0-553.135.1.rt7.476.el8_10.tar.xz) = fa26238c1079a6538c5bcce3326952194f5cf28bce3a459960c345d485b13ed96e4f708b544233f155e0f6be021fc0aa5db981a0dac29589b917b206e10c283e