From 04304be568bd4ec62f794c632a79aba7afc40be7 Mon Sep 17 00:00:00 2001
From: CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com>
Date: Tue, 17 Feb 2026 05:17:24 +0000
Subject: [PATCH] kernel-4.18.0-553.106.1.el8_10

* Tue Feb 17 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.106.1.el8_10]
- bridge: mcast: Fix use-after-free during router port configuration (Mohammad Heib) [RHEL-138422] {CVE-2025-38248}
- net/sched: Enforce that teql can only be used as root qdisc (CKI Backport Bot) [RHEL-146992] {CVE-2026-23074}
- page_pool: Fix use-after-free in page_pool_recycle_in_ring (Marc Milgram) [RHEL-137838] {CVE-2025-38129}
- mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (CKI Backport Bot) [RHEL-143189] {CVE-2025-68800}
- smc: Fix use-after-free in __pnet_find_base_ndev(). (Mete Durlu) [RHEL-126886] {CVE-2025-40064}
Resolves: RHEL-126886, RHEL-137838, RHEL-138422, RHEL-143189, RHEL-146992

Signed-off-by: CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com>
---
 kernel.spec | 11 +++++++++--
 sources     |  6 +++---
 2 files changed, 12 insertions(+), 5 deletions(-)

diff --git a/kernel.spec b/kernel.spec
index 2e860defa..5238f0620 100644
--- a/kernel.spec
+++ b/kernel.spec
@@ -38,10 +38,10 @@
 # define buildid .local
 
 %define specversion 4.18.0
-%define pkgrelease 553.105.1.el8_10
+%define pkgrelease 553.106.1.el8_10
 
 # allow pkg_release to have configurable %%{?dist} tag
-%define specrelease 553.105.1%{?dist}
+%define specrelease 553.106.1%{?dist}
 
 %define pkg_release %{specrelease}%{?buildid}
 
@@ -2705,6 +2705,13 @@ fi
 #
 #
 %changelog
+* Tue Feb 17 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.106.1.el8_10]
+- bridge: mcast: Fix use-after-free during router port configuration (Mohammad Heib) [RHEL-138422] {CVE-2025-38248}
+- net/sched: Enforce that teql can only be used as root qdisc (CKI Backport Bot) [RHEL-146992] {CVE-2026-23074}
+- page_pool: Fix use-after-free in page_pool_recycle_in_ring (Marc Milgram) [RHEL-137838] {CVE-2025-38129}
+- mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (CKI Backport Bot) [RHEL-143189] {CVE-2025-68800}
+- smc: Fix use-after-free in __pnet_find_base_ndev(). (Mete Durlu) [RHEL-126886] {CVE-2025-40064}
+
 * Sat Feb 07 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.105.1.el8_10]
 - s390/ipl: Clear SBP flag when bootprog is set (Mete Durlu) [RHEL-145334]
 - Bluetooth: hci_event: Fix checking conn for le_conn_complete_evt (David Marlin) [RHEL-137111] {CVE-2023-53762}
diff --git a/sources b/sources
index cd724fd0a..63d883d33 100644
--- a/sources
+++ b/sources
@@ -1,3 +1,3 @@
-SHA512 (linux-4.18.0-553.105.1.el8_10.tar.xz) = e6d46c7edb106677be847443705d5bde3e22e5f7044642bfa1e483ba416fe19103206a143cd1508dca3b80b2497c6b36513e406455eea7740c32eadca14ee445
-SHA512 (kernel-abi-stablelists-4.18.0-553.tar.bz2) = 5c2b08b8df793011ca40101c34333e7088cf9b23f84a4b659236132487251e219cfa449ad478aac7b03fe3297c837334a0bca6152810fed810e17c64572abf1b
-SHA512 (kernel-kabi-dw-4.18.0-553.tar.bz2) = 5a25e310d7d754af5a7115852d612a91d75a49f5a1e01ccf01688a46ae0a081880482375b058962c45f4f31178ad3704eae02414195a16f68201d49422c19c47
+SHA512 (linux-4.18.0-553.106.1.el8_10.tar.xz) = b0e94b0f489108faa4dda243845c5b142f74148bd8922a9ac031297181dee30af1511c44d367ca646126e7ced352ed18f03c7d7e6e9c2014b2ec3d5da22ad257
+SHA512 (kernel-abi-stablelists-4.18.0-553.tar.bz2) = 796f3429b49a9dcb3846d28bc55ee2e2fbbb95fbab372ca163d4e7fbdb98dbba54b1e833cb19e9e2a320e000a0499e2df309f29dcd562a3829b9410c40f0fb69
+SHA512 (kernel-kabi-dw-4.18.0-553.tar.bz2) = 7119a15e34561419d0ead254d904f99da0aa9a76732858b3b11bc161a4853ffd93a1f64e183ba4864fe5a758259c7fde1b865812e1911df52f91860b4a022520