diff --git a/kernel.spec b/kernel.spec
index aeaef18..3ae6656 100644
--- a/kernel.spec
+++ b/kernel.spec
@@ -38,10 +38,10 @@
 # define buildid .local
 
 %define specversion 4.18.0
-%define pkgrelease 553.102.1.rt7.443.el8_10
+%define pkgrelease 553.103.1.rt7.444.el8_10
 
 # allow pkg_release to have configurable %%{?dist} tag
-%define specrelease 553.102.1.rt7.443%{?dist}
+%define specrelease 553.103.1.rt7.444%{?dist}
 
 %define pkg_release %{specrelease}%{?buildid}
 
@@ -148,7 +148,7 @@
 # The preempt RT patch level
 %global rttag .rt7
 # realtimeN
-%global rtbuild .443
+%global rtbuild .444
 %define with_doc 0
 %define with_headers 0
 %define with_cross_headers 0
@@ -2708,6 +2708,11 @@ fi
 #
 #
 %changelog
+* Tue Feb 03 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.103.1.rt7.444.el8_10]
+- ext4: fix use-after-free in ext4_orphan_cleanup (CKI Backport Bot) [RHEL-136000] {CVE-2022-50673}
+- ext4: lost matching-pair of trace in ext4_truncate (CKI Backport Bot) [RHEL-136000] {CVE-2022-50673}
+- ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (CKI Backport Bot) [RHEL-136904] {CVE-2025-40269}
+
 * Sat Jan 31 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.102.1.rt7.443.el8_10]
 - nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec (CKI Backport Bot) [RHEL-144327] {CVE-2026-22998}
 - NFSv4: ensure the open stateid seqid doesn't go backwards (Scott Mayhew) [RHEL-121683]
diff --git a/sources b/sources
index 3bd09f3..f103c8e 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-SHA512 (linux-4.18.0-553.102.1.rt7.443.el8_10.tar.xz) = ca3b3de4f3bc0aa94e0e1b8ea17289572e3f725bc1ee7d00942e1c99d6a4105cd1af70fa3af36419cc35e4981b327fd962af9377a7b60e989c2c911bbd44e273
+SHA512 (linux-4.18.0-553.103.1.rt7.444.el8_10.tar.xz) = 75a286ab27143b5e1281d5c929676c102952d95121b3451a76d5dd1407a6b139ff8e6936b05d38f712e1c6330ae53f06f5f1e454033e00e422327ab2fa9d4db5