import kernel-5.14.0-162.12.1.el9_1

.gitignore

@@ -1,5 +1,5 @@
-SOURCES/kernel-abi-stablelists-5.14.0-162.6.1.el9_1.tar.bz2
-SOURCES/kernel-kabi-dw-5.14.0-162.6.1.el9_1.tar.bz2
-SOURCES/linux-5.14.0-162.6.1.el9_1.tar.xz
+SOURCES/kernel-abi-stablelists-5.14.0-162.12.1.el9_1.tar.bz2
+SOURCES/kernel-kabi-dw-5.14.0-162.12.1.el9_1.tar.bz2
+SOURCES/linux-5.14.0-162.12.1.el9_1.tar.xz
 SOURCES/rheldup3.x509
 SOURCES/rhelkpatch1.x509

.kernel.metadata

@@ -1,5 +1,5 @@
-f810437af936ad63b3abbdddda2e36f52dbccbce SOURCES/kernel-abi-stablelists-5.14.0-162.6.1.el9_1.tar.bz2
-7f3ae669e865de708eeb1c07002f6c20f5732e65 SOURCES/kernel-kabi-dw-5.14.0-162.6.1.el9_1.tar.bz2
-d0ce11b50bc09a09469429502e92b2b70596dbc3 SOURCES/linux-5.14.0-162.6.1.el9_1.tar.xz
+60f650ccf9766c4bff6e2351f48ce20788b0454d SOURCES/kernel-abi-stablelists-5.14.0-162.12.1.el9_1.tar.bz2
+7f3ae669e865de708eeb1c07002f6c20f5732e65 SOURCES/kernel-kabi-dw-5.14.0-162.12.1.el9_1.tar.bz2
+150a407bd971ea1b80539194df1a1e30f5f3dd77 SOURCES/linux-5.14.0-162.12.1.el9_1.tar.xz
 95b9b811c7b0a6c98b2eafc4e7d6d24f2cb63289 SOURCES/rheldup3.x509
 d90885108d225a234a5a9d054fc80893a5bd54d0 SOURCES/rhelkpatch1.x509

SOURCES/Makefile.rhelver

@@ -12,7 +12,7 @@ RHEL_MINOR = 1
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 162.6.1
+RHEL_RELEASE = 162.12.1
 
 #
 # ZSTREAM

SPECS/kernel.spec

@@ -121,13 +121,13 @@ Summary: The Linux kernel
 %define kversion 5.14
 
 %define rpmversion 5.14.0
-%define pkgrelease 162.6.1.el9_1
+%define pkgrelease 162.12.1.el9_1
 
 # This is needed to do merge window version magic
 %define patchlevel 14
 
 # allow pkg_release to have configurable %%{?dist} tag
-%define specrelease 162.6.1%{?buildid}%{?dist}
+%define specrelease 162.12.1%{?buildid}%{?dist}
 
 %define pkg_release %{specrelease}
 
@@ -678,7 +678,7 @@ BuildRequires: lld
 # exact git commit you can run
 #
 # xzcat -qq ${TARBALL} | git get-tar-commit-id
-Source0: linux-5.14.0-162.6.1.el9_1.tar.xz
+Source0: linux-5.14.0-162.12.1.el9_1.tar.xz
 
 Source1: Makefile.rhelver
 
@@ -1350,8 +1350,8 @@ ApplyOptionalPatch()
   fi
 }
 
-%setup -q -n kernel-5.14.0-162.6.1.el9_1 -c
-mv linux-5.14.0-162.6.1.el9_1 linux-%{KVERREL}
+%setup -q -n kernel-5.14.0-162.12.1.el9_1 -c
+mv linux-5.14.0-162.12.1.el9_1 linux-%{KVERREL}
 
 cd linux-%{KVERREL}
 cp -a %{SOURCE1} .
@@ -3017,6 +3017,87 @@ fi
 #
 #
 %changelog
+* Tue Dec 20 2022 Patrick Talbert <ptalbert@redhat.com> [5.14.0-162.12.1.el9_1]
+- x86/fpu: Drop fpregs lock before inheriting FPU permissions (Valentin Schneider) [2154407 2153181]
+- hv_netvsc: Fix race between VF offering and VF association message from host (Mohammed Gamal) [2151605 2149277]
+- PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (Emanuele Giuseppe Esposito) [2150910 2092794]
+
+* Thu Dec 08 2022 Patrick Talbert <ptalbert@redhat.com> [5.14.0-162.11.1.el9_1]
+- drm/i915: fix TLB invalidation for Gen12 video and compute engines (Wander Lairson Costa) [2148152 2148153] {CVE-2022-4139}
+- memcg: prohibit unconditional exceeding the limit of dying tasks (Chris von Recklinghausen) [2143976 2120352]
+- mm, oom: do not trigger out_of_memory from the #PF (Waiman Long) [2143976 2139747]
+- mm, oom: pagefault_out_of_memory: don't force global OOM for dying tasks (Chris von Recklinghausen) [2143976 2120352]
+- pipe: Fix missing lock in pipe_resize_ring() (Ian Kent) [2141631 2141632] {CVE-2022-2959}
+- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2142722 2142723] {CVE-2022-2964}
+- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2142722 2142723] {CVE-2022-2964}
+- NFSD: Protect against send buffer overflow in NFSv3 READ (Scott Mayhew) [2141769 2141770] {CVE-2022-43945}
+- NFSD: Protect against send buffer overflow in NFSv2 READ (Scott Mayhew) [2141769 2141770] {CVE-2022-43945}
+- NFSD: Protect against send buffer overflow in NFSv3 READDIR (Scott Mayhew) [2141769 2141770] {CVE-2022-43945}
+- NFSD: Protect against send buffer overflow in NFSv2 READDIR (Scott Mayhew) [2141769 2141770] {CVE-2022-43945}
+- SUNRPC: Fix svcxdr_init_encode's buflen calculation (Scott Mayhew) [2141769 2141770] {CVE-2022-43945}
+- SUNRPC: Fix svcxdr_init_decode's end-of-buffer calculation (Scott Mayhew) [2141769 2141770] {CVE-2022-43945}
+
+* Thu Dec 01 2022 Patrick Talbert <ptalbert@redhat.com> [5.14.0-162.10.1.el9_1]
+- ice: Fix crash by keep old cfg when update TCs more than queues (Petr Oros) [2132070 2131953]
+- ice: Fix tunnel checksum offload with fragmented traffic (Petr Oros) [2132070 2131953]
+- ice: handle E822 generic device ID in PLDM header (Petr Oros) [2132070 2131953]
+- ice: ethtool: Prohibit improper channel config for DCB (Petr Oros) [2132070 2131953]
+- ice: ethtool: advertise 1000M speeds properly (Petr Oros) [2132070 2131953]
+- ice: Fix switchdev rules book keeping (Petr Oros) [2132070 2131953]
+- ice: fix access-beyond-end in the switch code (Petr Oros) [2132070 2131953]
+- eth: ice: silence the GCC 12 array-bounds warning (Petr Oros) [2132070 2131953]
+- ice: Expose RSS indirection tables for queue groups via ethtool (Petr Oros) [2132070 2131953]
+- Revert "ice: Hide bus-info in ethtool for PRs in switchdev mode" (Petr Oros) [2132070 2131953]
+- ice: remove period on argument description in ice_for_each_vf (Petr Oros) [2132070 2131953]
+- ice: add a function comment for ice_cfg_mac_antispoof (Petr Oros) [2132070 2131953]
+- ice: fix wording in comment for ice_reset_vf (Petr Oros) [2132070 2131953]
+- ice: remove return value comment for ice_reset_all_vfs (Petr Oros) [2132070 2131953]
+- ice: always check VF VSI pointer values (Petr Oros) [2132070 2131953]
+- ice: add newline to dev_dbg in ice_vf_fdir_dump_info (Petr Oros) [2132070 2131953]
+- ice: get switch id on switchdev devices (Petr Oros) [2132070 2131953]
+- ice: return ENOSPC when exceeding ICE_MAX_CHAIN_WORDS (Petr Oros) [2132070 2131953]
+- ice: introduce common helper for retrieving VSI by vsi_num (Petr Oros) [2132070 2131953]
+- ice: use min_t() to make code cleaner in ice_gnss (Petr Oros) [2132070 2131953]
+- ice, xsk: Avoid refilling single Rx descriptors (Petr Oros) [2132070 2131953]
+- ice, xsk: Diversify return values from xsk_wakeup call paths (Petr Oros) [2132070 2131953]
+- ice, xsk: Terminate Rx side of NAPI when XSK Rx queue gets full (Petr Oros) [2132070 2131953]
+- ice, xsk: Decorate ICE_XDP_REDIR with likely() (Petr Oros) [2132070 2131953]
+- ice: Add mpls+tso support (Petr Oros) [2132070 2131953]
+- ice: switch: convert packet template match code to rodata (Petr Oros) [2132070 2131953]
+- ice: switch: use convenience macros to declare dummy pkt templates (Petr Oros) [2132070 2131953]
+- ice: switch: use a struct to pass packet template params (Petr Oros) [2132070 2131953]
+- ice: switch: unobscurify bitops loop in ice_fill_adv_dummy_packet() (Petr Oros) [2132070 2131953]
+- ice: switch: add and use u16[] aliases to ice_adv_lkup_elem::{h, m}_u (Petr Oros) [2132070 2131953]
+- ice: Support GTP-U and GTP-C offload in switchdev (Petr Oros) [2132070 2131953]
+- Documentation/admin-guide: Document nomodeset kernel parameter (Karol Herbst) [2145217 2143841]
+- drm: Move nomodeset kernel parameter to the DRM subsystem (Karol Herbst) [2145217 2143841]
+- selftests/bpf: Limit unroll_count for pyperf600 test (Frantisek Hrbata) [2144902 2139836]
+- nvme-fc: fix the fc_appid_store return value (Ewan D. Milne) [2136914 2113035]
+- ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel systems (Wei Huang) [2142168 2130652]
+- CI: Drop c9s CI parts (Veronika Kabatova)
+- CI: Use GA builder container (Veronika Kabatova)
+
+* Thu Nov 17 2022 Patrick Talbert <ptalbert@redhat.com> [5.14.0-162.9.1.el9_1]
+- CI: Remove deprecated variable (Veronika Kabatova)
+- drm: fix duplicated code in drm_connector_register (Karol Herbst) [2134619 2132575]
+- drm/mgag200: Fix PLL setup for G200_SE_A rev >=4 (Jocelyn Falempe) [2140153 1960467]
+- scsi: mpi3mr: Schedule IRQ kthreads only on non-RT kernels (Tomas Henzl) [2139213 2136223]
+
+* Fri Nov 11 2022 Patrick Talbert <ptalbert@redhat.com> [5.14.0-162.8.1.el9_1]
+- redhat: fix the branch we pull from the documentation tree (Herton R. Krzesinski)
+- nvme-tcp: handle number of queue changes (John Meneghini) [2131359 2112025]
+- nvmet: expose max queues to configfs (John Meneghini) [2131359 2112025]
+- nvme-fabrics: parse nvme connect Linux error codes (John Meneghini) [2131359 2112025]
+- vfio/type1: Unpin zero pages (Alex Williamson) [2128514 2121855]
+- ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE (Oleg Nesterov) [2127881 2121271] {CVE-2022-30594}
+
+* Thu Nov 03 2022 Patrick Talbert <ptalbert@redhat.com> [5.14.0-162.7.1.el9_1]
+- i2c: ismt: prevent memory corruption in ismt_access() (David Arcari) [2127532 2125582] {CVE-2022-3077}
+- x86/fpu: Prevent FPU state corruption (Oleksandr Natalenko) [2134588 2131667]
+- iavf: Fix reset error handling (Petr Oros) [2127884 2119712]
+- iavf: Fix NULL pointer dereference in iavf_get_link_ksettings (Petr Oros) [2127884 2119712]
+- iavf: Fix missing state logs (Petr Oros) [2127884 2119712]
+
 * Fri Sep 30 2022 Patrick Talbert <ptalbert@redhat.com> [5.14.0-162.6.1.el9_1]
 - kabi: add symbol yield to stablelist (Čestmír Kalina) [2120286]
 - kabi: add symbol xa_find_after to stablelist (Čestmír Kalina) [2120286]