From ee8051d43995b854ea064e9b3c42f0a2f1a293eb Mon Sep 17 00:00:00 2001
From: CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com>
Date: Thu, 18 Jun 2026 18:25:00 +0000
Subject: [PATCH] kernel-rt-4.18.0-553.136.1.rt7.477.el8_10

* Thu Jun 18 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.136.1.rt7.477.el8_10]
- net/sched: fix pedit partial COW leading to page cache corruption (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
- net/sched: act_pedit: free pedit keys on bail from offset check (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
- net/sched: act_pedit: rate limit datapath messages (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
- net/sched: act_pedit: remove extra check for key type (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
- net/sched: act_pedit: check static offsets a priori (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
- nvmet-tcp: fix race between ICReq handling and queue teardown (Chris Leech) [RHEL-180103] {CVE-2026-46135}
- net: mana: fix use-after-free in add_adev() error path (CKI Backport Bot) [RHEL-172764] {CVE-2026-43056}
Resolves: RHEL-172764, RHEL-177582, RHEL-180103

Signed-off-by: CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com>
---
 kernel.spec | 15 ++++++++++++---
 sources     |  2 +-
 2 files changed, 13 insertions(+), 4 deletions(-)

diff --git a/kernel.spec b/kernel.spec
index 9ef53ae..6700d16 100644
--- a/kernel.spec
+++ b/kernel.spec
@@ -38,10 +38,10 @@
 # define buildid .local
 
 %define specversion 4.18.0
-%define pkgrelease 553.135.1.rt7.476.el8_10
+%define pkgrelease 553.136.1.rt7.477.el8_10
 
 # allow pkg_release to have configurable %%{?dist} tag
-%define specrelease 553.135.1.rt7.476%{?dist}
+%define specrelease 553.136.1.rt7.477%{?dist}
 
 %define pkg_release %{specrelease}%{?buildid}
 
@@ -148,7 +148,7 @@
 # The preempt RT patch level
 %global rttag .rt7
 # realtimeN
-%global rtbuild .476
+%global rtbuild .477
 %define with_doc 0
 %define with_headers 0
 %define with_cross_headers 0
@@ -2710,6 +2710,15 @@ fi
 #
 #
 %changelog
+* Thu Jun 18 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.136.1.rt7.477.el8_10]
+- net/sched: fix pedit partial COW leading to page cache corruption (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
+- net/sched: act_pedit: free pedit keys on bail from offset check (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
+- net/sched: act_pedit: rate limit datapath messages (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
+- net/sched: act_pedit: remove extra check for key type (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
+- net/sched: act_pedit: check static offsets a priori (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
+- nvmet-tcp: fix race between ICReq handling and queue teardown (Chris Leech) [RHEL-180103] {CVE-2026-46135}
+- net: mana: fix use-after-free in add_adev() error path (CKI Backport Bot) [RHEL-172764] {CVE-2026-43056}
+
 * Wed Jun 17 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.135.1.rt7.476.el8_10]
 - drm/amd/display: Do not skip unrelated mode changes in DSC validation (José Expósito) [RHEL-178825] {CVE-2026-31488}
 - sched/deadline: Fix missing ENQUEUE_REPLENISH during PI de-boosting (Juri Lelli) [RHEL-178520]
diff --git a/sources b/sources
index 9cb0fdb..d49a5c1 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-SHA512 (linux-4.18.0-553.135.1.rt7.476.el8_10.tar.xz) = fa26238c1079a6538c5bcce3326952194f5cf28bce3a459960c345d485b13ed96e4f708b544233f155e0f6be021fc0aa5db981a0dac29589b917b206e10c283e
+SHA512 (linux-4.18.0-553.136.1.rt7.477.el8_10.tar.xz) = 4f34a43611be82f8c943869c15456ef78dd7da8af264c3425e09cf7fae880f04265ffb2a5fbac263ad3f2d986fe4fdaf8afd2dd0091ca210305956139604f0b8