diff --git a/Makefile.rhelver b/Makefile.rhelver
index 9289eac2c..4eb2e2a75 100644
--- a/Makefile.rhelver
+++ b/Makefile.rhelver
@@ -12,7 +12,7 @@ RHEL_MINOR = 6
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 535
+RHEL_RELEASE = 536
 
 #
 # ZSTREAM
diff --git a/kernel.changelog b/kernel.changelog
index 9ce576be3..2fabf8656 100644
--- a/kernel.changelog
+++ b/kernel.changelog
@@ -1,3 +1,68 @@
+* Thu Nov 28 2024 Rado Vrbovsky <rvrbovsk@redhat.com> [5.14.0-536.el9]
+- gfs2: Get rid of demote_ok checks (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Remove freeze_go_demote_ok (Andreas Gruenbacher) [RHEL-67675]
+- Revert "GFS2: Don't add all glocks to the lru" (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Revise glock reference counting model (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Add GL_NOBLOCK flag (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: fix double destroy_workqueue error (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Switch to a per-filesystem glock workqueue (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Report when glocks cannot be freed for a long time (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: gfs2_glock_get cleanup (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Invert the GLF_INITIAL flag (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Remove outdated comment in glock_work_func (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Update glocks documentation (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Rename handle_callback to request_demote (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Rename GLF_FROZEN to GLF_HAVE_FROZEN_REPLY (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Rename GLF_REPLY_PENDING to GLF_HAVE_REPLY (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Rename GLF_FREEING to GLF_UNLOCKED (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Remove useless return statement in run_queue (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Remove unnecessary function prototype (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: dynamically allocate the gfs2-qd shrinker (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: dynamically allocate the gfs2-glock shrinker (Andreas Gruenbacher) [RHEL-67675]
+- Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change (CKI Backport Bot) [RHEL-63971] {CVE-2024-50044}
+- selftests/mm: relax test to fail after 100 migration failures (Radostin Stoyanov) [RHEL-62703]
+- perf dso: Fix symtab_type for kmod compression (Michael Petlan) [RHEL-62198]
+- Bluetooth: HCI: Fix potential null-ptr-deref (CKI Backport Bot) [RHEL-38466] {CVE-2024-36011}
+- RDMA/bnxt_re: Check cqe flags to know imm_data vs inv_irkey (Mohammad Heib) [RHEL-67317]
+- RDMA/bnxt_re: Remove some dead code (Mohammad Heib) [RHEL-67317]
+- RDMA/bnxt_re: Fix some error handling paths in bnxt_re_probe() (Mohammad Heib) [RHEL-67317]
+- RDMA/bnxt_re: synchronize the qp-handle table array (Mohammad Heib) [RHEL-67317]
+- RDMA/bnxt_re: Fix the usage of control path spin locks (Mohammad Heib) [RHEL-67317]
+- bnxt_re: Fix imm_data endianness (Mohammad Heib) [RHEL-67317]
+- Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs (CKI Backport Bot) [RHEL-66803] {CVE-2024-50255}
+- Revert "ixgbe: Manual AN-37 for troublesome link partners for X550 SFI" (Ivan Vecera) [RHEL-44950]
+- Bluetooth: hci_core: Fix calling mgmt_device_connected (Bastien Nocera) [RHEL-63624] {CVE-2024-49950}
+- Bluetooth: L2CAP: Fix uaf in l2cap_connect (CKI Backport Bot) [RHEL-63624] {CVE-2024-49950}
+- Bluetooth: SCO: Fix UAF on sco_sock_timeout (CKI Backport Bot) [RHEL-65927] {CVE-2024-50125}
+- Bluetooth: hci_sync: Fix UAF in hci_acl_create_conn_sync (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_sync: Fix UAF on create_le_conn_complete (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_sync: Fix UAF on hci_abort_conn_sync (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_sync: Attempt to dequeue connection attempt (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_conn: Fix UAF Write in __hci_acl_create_connection_sync (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_conn: Always use sk_timeo as conn_timeout (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: Remove pending ACL connection attempts (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_conn: Only do ACL connections sequentially (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_event: Use HCI error defines instead of magic values (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: Remove superfluous call to hci_conn_check_pending() (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: Call iso_exit() on module unload (CKI Backport Bot) [RHEL-65144] {CVE-2024-50078}
+- Bluetooth: ISO: Fix multiple init when debugfs is disabled (CKI Backport Bot) [RHEL-65135] {CVE-2024-50077}
+- Bluetooth: bnep: fix wild-memory-access in proto_unregister (CKI Backport Bot) [RHEL-66364] {CVE-2024-50148}
+- fsdax: dax_unshare_iter needs to copy entire blocks (Brian Foster) [RHEL-64959]
+- fsdax: remove zeroing code from dax_unshare_iter (Brian Foster) [RHEL-64959]
+- iomap: turn iomap_want_unshare_iter into an inline function (Brian Foster) [RHEL-64959]
+- iomap: share iomap_unshare_iter predicate code with fsdax (Brian Foster) [RHEL-64959]
+- iomap: constrain the file range passed to iomap_file_unshare (Brian Foster) [RHEL-64959]
+- iomap: don't bother unsharing delalloc extents (Brian Foster) [RHEL-64959]
+- iomap: improve shared block detection in iomap_unshare_iter (Brian Foster) [RHEL-64959]
+- iomap: convert iomap_unshare_iter to use large folios (Brian Foster) [RHEL-64959]
+- xfs: don't allocate COW extents when unsharing a hole (Brian Foster) [RHEL-64959]
+- xfs: don't free cowblocks from under dirty pagecache on unshare (Brian Foster) [RHEL-64959]
+- xfs: skip background cowblock trims on inodes open for write (Brian Foster) [RHEL-64959]
+- uprobe: avoid out-of-bounds memory access of fetching args (Oleg Nesterov) [RHEL-64995] {CVE-2024-50067}
+- uprobes: encapsulate preparation of uprobe args buffer (Oleg Nesterov) [RHEL-64995] {CVE-2024-50067}
+Resolves: RHEL-38466, RHEL-44950, RHEL-62198, RHEL-62703, RHEL-63624, RHEL-63875, RHEL-63971, RHEL-64959, RHEL-64995, RHEL-65135, RHEL-65144, RHEL-65927, RHEL-66364, RHEL-66803, RHEL-67317, RHEL-67675
+
 * Wed Nov 27 2024 Rado Vrbovsky <rvrbovsk@redhat.com> [5.14.0-535.el9]
 - redhat: create 'crashkernel=' addons for UKI (Vitaly Kuznetsov) [RHEL-33051]
 - redhat: avoid superfluous quotes in UKI cmdline addones (Vitaly Kuznetsov) [RHEL-33051]
diff --git a/kernel.spec b/kernel.spec
index badc87c08..412101df4 100755
--- a/kernel.spec
+++ b/kernel.spec
@@ -165,15 +165,15 @@ Summary: The Linux kernel
 # define buildid .local
 %define specversion 5.14.0
 %define patchversion 5.14
-%define pkgrelease 535
+%define pkgrelease 536
 %define kversion 5
-%define tarfile_release 5.14.0-535.el9
+%define tarfile_release 5.14.0-536.el9
 # This is needed to do merge window version magic
 %define patchlevel 14
 # This allows pkg_release to have configurable %%{?dist} tag
-%define specrelease 535%{?buildid}%{?dist}
+%define specrelease 536%{?buildid}%{?dist}
 # This defines the kabi tarball version
-%define kabiversion 5.14.0-535.el9
+%define kabiversion 5.14.0-536.el9
 
 #
 # End of genspec.sh variables
@@ -3813,6 +3813,70 @@ fi
 #
 #
 %changelog
+* Thu Nov 28 2024 Rado Vrbovsky <rvrbovsk@redhat.com> [5.14.0-536.el9]
+- gfs2: Get rid of demote_ok checks (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Remove freeze_go_demote_ok (Andreas Gruenbacher) [RHEL-67675]
+- Revert "GFS2: Don't add all glocks to the lru" (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Revise glock reference counting model (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Add GL_NOBLOCK flag (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: fix double destroy_workqueue error (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Switch to a per-filesystem glock workqueue (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Report when glocks cannot be freed for a long time (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: gfs2_glock_get cleanup (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Invert the GLF_INITIAL flag (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Remove outdated comment in glock_work_func (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Update glocks documentation (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Rename handle_callback to request_demote (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Rename GLF_FROZEN to GLF_HAVE_FROZEN_REPLY (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Rename GLF_REPLY_PENDING to GLF_HAVE_REPLY (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Rename GLF_FREEING to GLF_UNLOCKED (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Remove useless return statement in run_queue (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: Remove unnecessary function prototype (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: dynamically allocate the gfs2-qd shrinker (Andreas Gruenbacher) [RHEL-67675]
+- gfs2: dynamically allocate the gfs2-glock shrinker (Andreas Gruenbacher) [RHEL-67675]
+- Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change (CKI Backport Bot) [RHEL-63971] {CVE-2024-50044}
+- selftests/mm: relax test to fail after 100 migration failures (Radostin Stoyanov) [RHEL-62703]
+- perf dso: Fix symtab_type for kmod compression (Michael Petlan) [RHEL-62198]
+- Bluetooth: HCI: Fix potential null-ptr-deref (CKI Backport Bot) [RHEL-38466] {CVE-2024-36011}
+- RDMA/bnxt_re: Check cqe flags to know imm_data vs inv_irkey (Mohammad Heib) [RHEL-67317]
+- RDMA/bnxt_re: Remove some dead code (Mohammad Heib) [RHEL-67317]
+- RDMA/bnxt_re: Fix some error handling paths in bnxt_re_probe() (Mohammad Heib) [RHEL-67317]
+- RDMA/bnxt_re: synchronize the qp-handle table array (Mohammad Heib) [RHEL-67317]
+- RDMA/bnxt_re: Fix the usage of control path spin locks (Mohammad Heib) [RHEL-67317]
+- bnxt_re: Fix imm_data endianness (Mohammad Heib) [RHEL-67317]
+- Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs (CKI Backport Bot) [RHEL-66803] {CVE-2024-50255}
+- Revert "ixgbe: Manual AN-37 for troublesome link partners for X550 SFI" (Ivan Vecera) [RHEL-44950]
+- Bluetooth: hci_core: Fix calling mgmt_device_connected (Bastien Nocera) [RHEL-63624] {CVE-2024-49950}
+- Bluetooth: L2CAP: Fix uaf in l2cap_connect (CKI Backport Bot) [RHEL-63624] {CVE-2024-49950}
+- Bluetooth: SCO: Fix UAF on sco_sock_timeout (CKI Backport Bot) [RHEL-65927] {CVE-2024-50125}
+- Bluetooth: hci_sync: Fix UAF in hci_acl_create_conn_sync (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_sync: Fix UAF on create_le_conn_complete (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_sync: Fix UAF on hci_abort_conn_sync (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_sync: Attempt to dequeue connection attempt (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_conn: Fix UAF Write in __hci_acl_create_connection_sync (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_conn: Always use sk_timeo as conn_timeout (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: Remove pending ACL connection attempts (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_conn: Only do ACL connections sequentially (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: hci_event: Use HCI error defines instead of magic values (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: Remove superfluous call to hci_conn_check_pending() (Bastien Nocera) [RHEL-63875] {CVE-2024-50029}
+- Bluetooth: Call iso_exit() on module unload (CKI Backport Bot) [RHEL-65144] {CVE-2024-50078}
+- Bluetooth: ISO: Fix multiple init when debugfs is disabled (CKI Backport Bot) [RHEL-65135] {CVE-2024-50077}
+- Bluetooth: bnep: fix wild-memory-access in proto_unregister (CKI Backport Bot) [RHEL-66364] {CVE-2024-50148}
+- fsdax: dax_unshare_iter needs to copy entire blocks (Brian Foster) [RHEL-64959]
+- fsdax: remove zeroing code from dax_unshare_iter (Brian Foster) [RHEL-64959]
+- iomap: turn iomap_want_unshare_iter into an inline function (Brian Foster) [RHEL-64959]
+- iomap: share iomap_unshare_iter predicate code with fsdax (Brian Foster) [RHEL-64959]
+- iomap: constrain the file range passed to iomap_file_unshare (Brian Foster) [RHEL-64959]
+- iomap: don't bother unsharing delalloc extents (Brian Foster) [RHEL-64959]
+- iomap: improve shared block detection in iomap_unshare_iter (Brian Foster) [RHEL-64959]
+- iomap: convert iomap_unshare_iter to use large folios (Brian Foster) [RHEL-64959]
+- xfs: don't allocate COW extents when unsharing a hole (Brian Foster) [RHEL-64959]
+- xfs: don't free cowblocks from under dirty pagecache on unshare (Brian Foster) [RHEL-64959]
+- xfs: skip background cowblock trims on inodes open for write (Brian Foster) [RHEL-64959]
+- uprobe: avoid out-of-bounds memory access of fetching args (Oleg Nesterov) [RHEL-64995] {CVE-2024-50067}
+- uprobes: encapsulate preparation of uprobe args buffer (Oleg Nesterov) [RHEL-64995] {CVE-2024-50067}
+
 * Wed Nov 27 2024 Rado Vrbovsky <rvrbovsk@redhat.com> [5.14.0-535.el9]
 - redhat: create 'crashkernel=' addons for UKI (Vitaly Kuznetsov) [RHEL-33051]
 - redhat: avoid superfluous quotes in UKI cmdline addones (Vitaly Kuznetsov) [RHEL-33051]
diff --git a/sources b/sources
index c6540bcc3..e26ccfab5 100644
--- a/sources
+++ b/sources
@@ -1,3 +1,3 @@
-SHA512 (linux-5.14.0-535.el9.tar.xz) = b091016d3cb6fc02d3461313cb46b1788b59ee32dcd7438156eb3979b7683a59e1a87fe6ec5de1a8ef84b3e11f96f86733149bcaf5dfc7562e844dcd5742a10e
-SHA512 (kernel-abi-stablelists-5.14.0-535.el9.tar.bz2) = 4878ac6d4f54ce4cb011d25859a2b007e330252caf514fab432fe0c7574bdbf48bd621436d3288c084d36718cff6d37ff24e477661747760c14796ea8b61a954
-SHA512 (kernel-kabi-dw-5.14.0-535.el9.tar.bz2) = 3d08f838767b27b87724fed347ce3be63fce15e5eded0576121c474d14db4a6d07895b350c635e343d5522ac237dfd982d1f39b8480c4129f4eb79f6a64115cb
+SHA512 (linux-5.14.0-536.el9.tar.xz) = 10ca3d7c55118f7b97c8a0f95d04dd938676b35766784de27dcf18a4fa7a187fe5a50f4ad8031995ff332ca0bb4295ccf1ba61e99286b02215124199a1765a27
+SHA512 (kernel-abi-stablelists-5.14.0-536.el9.tar.bz2) = 46a7822e32de0470717ac6b0794864efe6e5314ded59471b4256e5fd11d8bf12ae8713d51dbb09bf948e7e42a5f2ebc2a50427ae028db0cf79c83408cd1ce758
+SHA512 (kernel-kabi-dw-5.14.0-536.el9.tar.bz2) = 3d08f838767b27b87724fed347ce3be63fce15e5eded0576121c474d14db4a6d07895b350c635e343d5522ac237dfd982d1f39b8480c4129f4eb79f6a64115cb