hpsa: bring back deprecated PCI ids #CFHack #CFHack2024

mptsas: bring back deprecated PCI ids #CFHack #CFHack2024 megaraid_sas: bring back deprecated PCI ids #CFHack #CFHack2024 qla2xxx: bring back deprecated PCI ids #CFHack #CFHack2024 qla4xxx: bring back deprecated PCI ids lpfc: bring back deprecated PCI ids be2iscsi: bring back deprecated PCI ids kernel/rh_messages.h: enable all disabled pci devices by moving to unmaintained Use AlmaLinux OS secure boot cert Debrand for AlmaLinux OS
2025-11-06 10:06:49 +00:00 · 2025-11-06 10:06:49 +00:00 · 3ef186bb8e
commit 3ef186bb8e
parent f1bcc2859e b0e676f562
6 changed files with 90 additions and 14 deletions
--- a/.gitignore
+++ b/.gitignore
@ -1,7 +1,7 @@
 fedoraimaca.x509
-kernel-abi-stablelists-6.12.0-55.40.1.el10_0.tar.xz
-kernel-kabi-dw-6.12.0-55.40.1.el10_0.tar.xz
-linux-6.12.0-55.40.1.el10_0.tar.xz
+kernel-abi-stablelists-6.12.0-55.42.1.el10_0.tar.xz
+kernel-kabi-dw-6.12.0-55.42.1.el10_0.tar.xz
+linux-6.12.0-55.42.1.el10_0.tar.xz
 nvidiagpuoot001.x509
 olima1.x509
 olimaca1.x509
--- a/Makefile.rhelver
+++ b/Makefile.rhelver
@ -12,7 +12,7 @@ RHEL_MINOR = 0
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 55.40.1
+RHEL_RELEASE = 55.42.1

 #
 # RHEL_REBASE_NUM
--- a/kernel.changelog
+++ b/kernel.changelog
@ -1,3 +1,36 @@
+* Sat Oct 25 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [6.12.0-55.42.1.el10_0]
+- platform/x86/intel: power-domains: Use topology_logical_package_id() for package ID (CKI Backport Bot) [RHEL-123288]
+- KVM: arm64: Disable MPAM visibility by default and ignore VMM writes (Gavin Shan) [RHEL-121690]
+- KVM: arm64: Add a macro for creating filtered sys_reg_descs entries (Gavin Shan) [RHEL-121690]
+- redhat: rpminspect: update emptyrpm list for kernel variants (Alexandra Hájková)
+- cgroup/psi: Set of->priv to NULL upon file release (CKI Backport Bot) [RHEL-119147] {CVE-2025-39881}
+- kernfs: Fix UAF in polling when open file is released (CKI Backport Bot) [RHEL-119147] {CVE-2025-39881}
+- ipv6: sr: Fix MAC comparison to be constant-time (CKI Backport Bot) [RHEL-116388] {CVE-2025-39702}
+Resolves: RHEL-116388, RHEL-119147, RHEL-121690, RHEL-123288
+
+* Mon Oct 20 2025 Jan Stancek <jstancek@redhat.com> [6.12.0-55.41.1.el10_0]
+- ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control (CKI Backport Bot) [RHEL-114853] {CVE-2025-39751}
+- erofs: fix blksize < PAGE_SIZE for file-backed mounts (CKI Backport Bot) [RHEL-83885] {CVE-2024-56750}
+- s390/ism: fix concurrency management in ism_cmd() (CKI Backport Bot) [RHEL-114499]
+- NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() (CKI Backport Bot) [RHEL-113614] {CVE-2025-39730}
+- net/mlx5: Generate PPS IN event on new function for shared clock (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Support one PTP device per hardware clock (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Move PPS notifier and out_work to clock_state (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Add devcom component for the clock shared by functions (Michal Schmidt) [RHEL-101997]
+- net/mlx5: Change clock in mlx5_core_dev to mlx5_clock pointer (Michal Schmidt) [RHEL-101997]
+- net/mlx5: Add API to get mlx5_core_dev from mlx5_clock (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Add init and destruction functions for a single HW clock (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Change parameters for PTP internal functions (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Add helper functions for PTP callbacks (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Add support for MRTCQ register (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: use do_aux_work for PHC overflow checks (Michal Schmidt) [RHEL-101997]
+- mlx5_en: use read sequence for gettimex64 (Benjamin Poirier) [RHEL-101997]
+- NFS: Fix a race when updating an existing write (CKI Backport Bot) [RHEL-113859] {CVE-2025-39697}
+- vsock/virtio: Validate length in packet header before skb_put() (Jon Maloy) [RHEL-114304] {CVE-2025-39718}
+- mm: swap: fix potential buffer overflow in setup_clusters() (CKI Backport Bot) [RHEL-114863] {CVE-2025-39727}
+- wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result() (CKI Backport Bot) [RHEL-117583] {CVE-2025-39849}
+Resolves: RHEL-101997, RHEL-113614, RHEL-113859, RHEL-114304, RHEL-114499, RHEL-114853, RHEL-114863, RHEL-117583, RHEL-83885
+
 * Sat Oct 11 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [6.12.0-55.40.1.el10_0]
 - scsi: lpfc: Fix buffer free/clear order in deferred receive path (CKI Backport Bot) [RHEL-119125] {CVE-2025-39841}
 - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (CKI Backport Bot) [RHEL-118460] {CVE-2025-39817}
--- a/kernel.spec
+++ b/kernel.spec
@ -162,15 +162,15 @@ Summary: The Linux kernel
 %define specrpmversion 6.12.0
 %define specversion 6.12.0
 %define patchversion 6.12
-%define pkgrelease 55.40.1
+%define pkgrelease 55.42.1
 %define kversion 6
-%define tarfile_release 6.12.0-55.40.1.el10_0
+%define tarfile_release 6.12.0-55.42.1.el10_0
 # This is needed to do merge window version magic
 %define patchlevel 12
 # This allows pkg_release to have configurable %%{?dist} tag
-%define specrelease 55.40.1%{?buildid}%{?dist}
+%define specrelease 55.42.1%{?buildid}%{?dist}
 # This defines the kabi tarball version
-%define kabiversion 6.12.0-55.40.1.el10_0
+%define kabiversion 6.12.0-55.42.1.el10_0

 # If this variable is set to 1, a bpf selftests build failure will cause a
 # fatal kernel package build error
@ -4361,7 +4361,7 @@ fi\
 #
 #
 %changelog
-* Tue Oct 21 2025 Andrei Lukoshko <alukoshko@almalinux.org> - 6.12.0-55.40.1
+* Thu Nov 06 2025 Andrei Lukoshko <alukoshko@almalinux.org> - 6.12.0-55.42.1
 - hpsa: bring back deprecated PCI ids #CFHack #CFHack2024
 - mptsas: bring back deprecated PCI ids #CFHack #CFHack2024
 - megaraid_sas: bring back deprecated PCI ids #CFHack #CFHack2024
@ -4372,10 +4372,41 @@ fi\
 - kernel/rh_messages.h: enable all disabled pci devices by moving to
  unmaintained

-* Tue Oct 21 2025 Eduard Abdullin <eabdullin@almalinux.org> - 6.12.0-55.40.1
+* Thu Nov 06 2025 Eduard Abdullin <eabdullin@almalinux.org> - 6.12.0-55.42.1
 - Use AlmaLinux OS secure boot cert
 - Debrand for AlmaLinux OS

+* Sat Oct 25 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [6.12.0-55.42.1.el10_0]
+- platform/x86/intel: power-domains: Use topology_logical_package_id() for package ID (CKI Backport Bot) [RHEL-123288]
+- KVM: arm64: Disable MPAM visibility by default and ignore VMM writes (Gavin Shan) [RHEL-121690]
+- KVM: arm64: Add a macro for creating filtered sys_reg_descs entries (Gavin Shan) [RHEL-121690]
+- redhat: rpminspect: update emptyrpm list for kernel variants (Alexandra Hájková)
+- cgroup/psi: Set of->priv to NULL upon file release (CKI Backport Bot) [RHEL-119147] {CVE-2025-39881}
+- kernfs: Fix UAF in polling when open file is released (CKI Backport Bot) [RHEL-119147] {CVE-2025-39881}
+- ipv6: sr: Fix MAC comparison to be constant-time (CKI Backport Bot) [RHEL-116388] {CVE-2025-39702}
+
+* Mon Oct 20 2025 Jan Stancek <jstancek@redhat.com> [6.12.0-55.41.1.el10_0]
+- ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control (CKI Backport Bot) [RHEL-114853] {CVE-2025-39751}
+- erofs: fix blksize < PAGE_SIZE for file-backed mounts (CKI Backport Bot) [RHEL-83885] {CVE-2024-56750}
+- s390/ism: fix concurrency management in ism_cmd() (CKI Backport Bot) [RHEL-114499]
+- NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() (CKI Backport Bot) [RHEL-113614] {CVE-2025-39730}
+- net/mlx5: Generate PPS IN event on new function for shared clock (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Support one PTP device per hardware clock (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Move PPS notifier and out_work to clock_state (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Add devcom component for the clock shared by functions (Michal Schmidt) [RHEL-101997]
+- net/mlx5: Change clock in mlx5_core_dev to mlx5_clock pointer (Michal Schmidt) [RHEL-101997]
+- net/mlx5: Add API to get mlx5_core_dev from mlx5_clock (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Add init and destruction functions for a single HW clock (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Change parameters for PTP internal functions (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Add helper functions for PTP callbacks (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: Add support for MRTCQ register (Benjamin Poirier) [RHEL-101997]
+- net/mlx5: use do_aux_work for PHC overflow checks (Michal Schmidt) [RHEL-101997]
+- mlx5_en: use read sequence for gettimex64 (Benjamin Poirier) [RHEL-101997]
+- NFS: Fix a race when updating an existing write (CKI Backport Bot) [RHEL-113859] {CVE-2025-39697}
+- vsock/virtio: Validate length in packet header before skb_put() (Jon Maloy) [RHEL-114304] {CVE-2025-39718}
+- mm: swap: fix potential buffer overflow in setup_clusters() (CKI Backport Bot) [RHEL-114863] {CVE-2025-39727}
+- wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result() (CKI Backport Bot) [RHEL-117583] {CVE-2025-39849}
+
 * Sat Oct 11 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [6.12.0-55.40.1.el10_0]
 - scsi: lpfc: Fix buffer free/clear order in deferred receive path (CKI Backport Bot) [RHEL-119125] {CVE-2025-39841}
 - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (CKI Backport Bot) [RHEL-118460] {CVE-2025-39817}
--- a/rpminspect.yaml
+++ b/rpminspect.yaml
@ -21,10 +21,22 @@ emptyrpm:
        - kernel-debug
        - kernel-debug-devel-matched
        - kernel-devel-matched
-        - kernel-lpae
        - kernel-zfcpdump
        - kernel-zfcpdump-devel-matched
        - kernel-zfcpdump-modules
+        - kernel-zfcpdump-modules-partner
+        - kernel-rt
+        - kernel-rt-debug
+        - kernel-rt-debug-devel-matched
+        - kernel-rt-devel-matched
+        - kernel-64k
+        - kernel-64k-debug
+        - kernel-64k-debug-devel-matched
+        - kernel-64k-devel-matched
+        - kernel-rt-64k
+        - kernel-rt-64k-debug
+        - kernel-rt-64k-debug-devel-matched
+        - kernel-rt-64k-devel-matched

 patches:
    ignore_list:
--- a/6
+++ b/6
@ -1,7 +1,7 @@
 SHA512 (fedoraimaca.x509) = e04809394f4472c17e86d7024dee34f03fb68e82a85502fd5b00535202c72e57626a8376b2cf991b7e1e46404aa5ab8d189ebf320e0dd37d49e7efbc925c7a2e
-SHA512 (kernel-abi-stablelists-6.12.0-55.40.1.el10_0.tar.xz) = a03bdc33c7f16a9f0d2bfa12ea6c35edb6de7725c88e9c400dd7f5c85e2413562a1176839654c207e465ad2da6ef832c4b640cb54cefd761341f74c9783ccc33
-SHA512 (kernel-kabi-dw-6.12.0-55.40.1.el10_0.tar.xz) = 107670f97a77cb44b0da03db027408419da7c173e9717ac1907b1188caaa45814fc81ae247b6b45fda3bbca922dd6b4832b6410deb2b974be3ff2b3204bafba1
-SHA512 (linux-6.12.0-55.40.1.el10_0.tar.xz) = 72cc6aceae764277c46116359cc0147a07cd270156afae0c43ba2bd45c8ab1d1b0c816badcd3d28f4dbf8c32fc7d317f711abd5c6cb36dbd2aa48d10e267e088
+SHA512 (kernel-abi-stablelists-6.12.0-55.42.1.el10_0.tar.xz) = 86d1ea078efef95d2fd0a2db2fd2cd0c20358bc8672058fbb5aeab808b5329a09364a42f55e78f978d66bb352abe613737908d983a2867e914809d1d2d48ea9f
+SHA512 (kernel-kabi-dw-6.12.0-55.42.1.el10_0.tar.xz) = 104ec1b56b9d05a1be1a651cc71ad2dbc73552f99ec46efdbb9509356f47de48e64899e768561bd9a0e3ae8ef382bb1ec2595022bb03daeeff55bec5551fdd7d
+SHA512 (linux-6.12.0-55.42.1.el10_0.tar.xz) = 0add580d6cb60c61e4955ee83bb0ebe9657737eb009b549ac31d29fa4cef21a7317ddf2dbe9d1d22a9e0d52920d98fddcfe326c20b693eb2163fd25d4b5d5d0c
 SHA512 (nvidiagpuoot001.x509) = b42f836e1cfa07890cb6ca13de9c3950e306c9ec7686c4c09f050bb68869f5d82962b2cd5f3aa0eb7a0f3a3ae54e9c480eafbac5df53aa92c295ff511a8c59fe
 SHA512 (olima1.x509) = 123c26c1d698cc8523845c6e1103b9c72abf855acd225d37baf1f3388a47f912166d6d786fb367fe46de39e011b586ad7f3963aa2e8923da30a6ea9ae0d76ad3
 SHA512 (olimaca1.x509) = 3a779415fad29d6f7250ec97ab1f0a5eb62c351b724feee06b22e17f065bf74a558f32cc524d3222c4485635ae5b9cd5287855c94010fe743b51a4d954340c4c