diff --git a/.gitignore b/.gitignore index 6022c99..4fbe5c9 100644 --- a/.gitignore +++ b/.gitignore @@ -1,6 +1,6 @@ SOURCES/centossecureboot201.cer SOURCES/centossecurebootca2.cer -SOURCES/linux-4.18.0-553.143.1.rt7.484.el8_10.tar.xz +SOURCES/linux-4.18.0-553.144.1.rt7.485.el8_10.tar.xz SOURCES/redhatsecureboot302.cer SOURCES/redhatsecureboot303.cer SOURCES/redhatsecureboot501.cer diff --git a/.kernel-rt.metadata b/.kernel-rt.metadata index ffaac96..e9cdc85 100644 --- a/.kernel-rt.metadata +++ b/.kernel-rt.metadata @@ -1,6 +1,6 @@ 2ba40bf9138b48311e5aa1b737b7f0a8ad66066f SOURCES/centossecureboot201.cer bfdb3d7cffc43f579655af5155d50c08671d95e5 SOURCES/centossecurebootca2.cer -57e986ba435d1ae6b1dc46f66c0727f9ed0dfbef SOURCES/linux-4.18.0-553.143.1.rt7.484.el8_10.tar.xz +08877839f356e895f8f045051db8aadced4ecc71 SOURCES/linux-4.18.0-553.144.1.rt7.485.el8_10.tar.xz 13e5cd3f856b472fde80a4deb75f4c18dfb5b255 SOURCES/redhatsecureboot302.cer e89890ca0ded2f9058651cc5fa838b78db2e6cc2 SOURCES/redhatsecureboot303.cer ba0b760e594ff668ee72ae348adf3e49b97f75fb SOURCES/redhatsecureboot501.cer diff --git a/SPECS/kernel.spec b/SPECS/kernel.spec index 4ae5dcd..ee1ef19 100644 --- a/SPECS/kernel.spec +++ b/SPECS/kernel.spec @@ -49,10 +49,10 @@ # define buildid .local %define specversion 4.18.0 -%define pkgrelease 553.143.1.rt7.484.el8_10 +%define pkgrelease 553.144.1.rt7.485.el8_10 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 553.143.1.rt7.484%{?dist} +%define specrelease 553.144.1.rt7.485%{?dist} %define pkg_release %{specrelease}%{?buildid} @@ -159,7 +159,7 @@ # The preempt RT patch level %global rttag .rt7 # realtimeN -%global rtbuild .484 +%global rtbuild .485 %define with_doc 0 %define with_headers 0 %define with_cross_headers 0 @@ -2726,6 +2726,11 @@ fi # # %changelog +* Mon Jul 13 2026 CKI KWF Bot [4.18.0-553.144.1.rt7.485.el8_10] +- xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete (Sabrina Dubroca) [RHEL-180170] {CVE-2026-46116} +- xfs: resample the data fork mapping after cycling ILOCK (Carlos Maiolino) [RHEL-193938] +- net: bridge: use a stable FDB dst snapshot in RCU readers (Mohammad Heib) [RHEL-179325] {CVE-2026-46086} + * Thu Jul 09 2026 CKI KWF Bot [4.18.0-553.143.1.rt7.484.el8_10] - locking/rtmutex: Skip remove_waiter() when waiter is not enqueued (Phil Auld) [RHEL-193334] {CVE-2026-53166} - rtmutex: Use waiter::task instead of current in remove_waiter() (Phil Auld) [RHEL-193143] {CVE-2026-43499}