diff --git a/kernel.spec b/kernel.spec
index 3dc203a..03d6499 100644
--- a/kernel.spec
+++ b/kernel.spec
@@ -38,10 +38,10 @@
 # define buildid .local
 
 %define specversion 4.18.0
-%define pkgrelease 553.117.1.rt7.458.el8_10
+%define pkgrelease 553.118.1.rt7.459.el8_10
 
 # allow pkg_release to have configurable %%{?dist} tag
-%define specrelease 553.117.1.rt7.458%{?dist}
+%define specrelease 553.118.1.rt7.459%{?dist}
 
 %define pkg_release %{specrelease}%{?buildid}
 
@@ -148,7 +148,7 @@
 # The preempt RT patch level
 %global rttag .rt7
 # realtimeN
-%global rtbuild .458
+%global rtbuild .459
 %define with_doc 0
 %define with_headers 0
 %define with_cross_headers 0
@@ -2708,6 +2708,11 @@ fi
 #
 #
 %changelog
+* Wed Apr 01 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.118.1.rt7.459.el8_10]
+- scsi: qla2xxx: Fix improper freeing of purex item (CKI Backport Bot) [RHEL-159219] {CVE-2025-68741}
+- ALSA: aloop: Fix racy access at PCM trigger (Jaroslav Kysela) [RHEL-150125] {CVE-2026-23191}
+- ALSA: aloop: Introduce a function to get if access is interleaved mode (CKI Backport Bot) [RHEL-150125] {CVE-2026-23191}
+
 * Fri Mar 27 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.117.1.rt7.458.el8_10]
 - nvme-pci: do not directly handle subsys reset fallout (Maurizio Lombardi) [RHEL-136436]
 - scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() (CKI Backport Bot) [RHEL-150417] {CVE-2026-23193}
diff --git a/sources b/sources
index aa80269..3d32278 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-SHA512 (linux-4.18.0-553.117.1.rt7.458.el8_10.tar.xz) = 337bee0e0b2cc9848708476e8e22a54bc49703dcb074c997bcc869cb7f093f1d1153529c9036b3efb89b3f07c575c337f3f1cb3a970ded7251d892bd1373d9ca
+SHA512 (linux-4.18.0-553.118.1.rt7.459.el8_10.tar.xz) = df66a5f124a6536f01a861ab3a5f91b3fcd9cbf8fd97a36a7e7774e26e4a53545653453d1750c22ef5e5373c81dc253712c7439f04b90601d13f49f236854d0d