From 72412f11937862e1e7d982ed45221a0640966a56 Mon Sep 17 00:00:00 2001
From: Denys Vlasenko <dvlasenk@redhat.com>
Date: Thu, 27 Jul 2023 11:23:07 +0200
Subject: [PATCH] kernel-4.18.0-506.el8

* Thu Jul 27 2023 Denys Vlasenko <dvlasenk@redhat.com> [4.18.0-506.el8]
- libceph: harden msgr2.1 frame segment length checks (Ilya Dryomov) [2222256]
- netfilter: nf_conntrack_netlink: need to hold rcu readlock when doing l4proto lookup (Florian Westphal) [2188230]
- net/mlx5: Expose steering dropped packets counter (Amir Tzin) [2223198]
- net/mlx5: Expose vnic diagnostic counters for eswitch managed vports (Amir Tzin) [2223198]
- igbvf: add PCI reset handler functions (Corinna Vinschen) [2153365]
- igbvf: Regard vf reset nack as success (Corinna Vinschen) [2153365]
- intel/igbvf: free irq on the error path in igbvf_request_msix() (Corinna Vinschen) [2153365]
- Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp} (Ricardo Robaina) [2139617] {CVE-2022-3640}
- Bluetooth: L2CAP: Fix build errors in some archs (Ricardo Robaina) [2139617] {CVE-2022-3640}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm regression (Ricardo Robaina) [2139617] {CVE-2022-3640}
- Bluetooth: L2CAP: fix use-after-free in l2cap_conn_del() (Ricardo Robaina) [2139617] {CVE-2022-3640}
- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put (Ricardo Robaina) [2139617] {CVE-2022-3640}
- iavf: fix reset task race with iavf_remove() (Petr Oros) [2223604]
- iavf: fix a deadlock caused by rtnl and driver's lock circular dependencies (Petr Oros) [2223604]
- Revert "iavf: Do not restart Tx queues after reset task failure" (Petr Oros) [2223604]
- Revert "iavf: Detach device during reset task" (Petr Oros) [2223604]
- iavf: Wait for reset in callbacks which trigger it (Petr Oros) [2223604]
- iavf: use internal state to free traffic IRQs (Petr Oros) [2223604]
- iavf: Fix out-of-bounds when setting channels on remove (Petr Oros) [2223604]
- iavf: Fix use-after-free in free_netdev (Petr Oros) [2223604]
- iavf: make functions static where possible (Petr Oros) [2223604]
- iavf: fix err handling for MAC replace (Petr Oros) [2223604]
- iavf: remove some unused functions and pointless wrappers (Petr Oros) [2223604]
- iavf: remove mask from iavf_irq_enable_queues() (Petr Oros) [2223604]
- iavf: send VLAN offloading caps once after VFR (Petr Oros) [2223604]
- cpufreq: Fix parameter in parse_perf_domain() (Mark Langsdorf) [2181273]
- cpufreq: intel_pstate: remove MODULE_LICENSE in non-modules (Mark Langsdorf) [2181273]
- cpufreq: intel_pstate: Adjust balance_performance EPP for Sapphire Rapids (Mark Langsdorf) [2181273]
- cpufreq: Make kobj_type structure constant (Mark Langsdorf) [2181273]
- driver core: make kobj_type constant. (Mark Langsdorf) [2181273]
- cpufreq: Make cpufreq_unregister_driver() return void (Mark Langsdorf) [2181273]
- drivers/cpufreq: Remove "select SRCU" (Mark Langsdorf) [2181273]
- cpufreq: intel_pstate: Drop ACPI _PSS states table patching (Mark Langsdorf) [2181273]
- cpufreq: stats: Convert to use sysfs_emit_at() API (Mark Langsdorf) [2181273]
- cpufreq: Init completion before kobject_init_and_add() (Mark Langsdorf) [2181273]
- cpufreq: intel_pstate: Allow EPP 0x80 setting by the firmware (Mark Langsdorf) [2181273]
- cpufreq: ACPI: Use str_enabled_disabled() helper (Mark Langsdorf) [2181273]
- cpufreq: Generalize of_perf_domain_get_sharing_cpumask phandle format (Mark Langsdorf) [2181273]
- cpufreq: Add of_perf_domain_get_sharing_cpumask (Mark Langsdorf) [2181273]
- cpufreq: intel_pstate: Read all MSRs on the target CPU (Mark Langsdorf) [2181273]
- ACPI: CPPC: Add ACPI disabled check to acpi_cpc_valid() (Mark Langsdorf) [2181273]
Resolves: rhbz#2139617, rhbz#2153365, rhbz#2181273, rhbz#2188230, rhbz#2222256, rhbz#2223198, rhbz#2223604

Signed-off-by: Denys Vlasenko <dvlasenk@redhat.com>
---
 kernel.spec | 49 ++++++++++++++++++++++++++++++++++++++++++++++---
 sources     |  6 +++---
 2 files changed, 49 insertions(+), 6 deletions(-)

diff --git a/kernel.spec b/kernel.spec
index 3ddfc9395..eda5a82d6 100644
--- a/kernel.spec
+++ b/kernel.spec
@@ -12,7 +12,7 @@
 # change below to w4T.xzdio):
 %define _binary_payload w3T.xzdio
 
-%global distro_build 505
+%global distro_build 506
 
 # Sign the x86_64 kernel for secure boot authentication
 %ifarch x86_64 aarch64 s390x ppc64le
@@ -38,10 +38,10 @@
 # define buildid .local
 
 %define rpmversion 4.18.0
-%define pkgrelease 505.el8
+%define pkgrelease 506.el8
 
 # allow pkg_release to have configurable %%{?dist} tag
-%define specrelease 505%{?dist}
+%define specrelease 506%{?dist}
 
 %define pkg_release %{specrelease}%{?buildid}
 
@@ -2695,6 +2695,49 @@ fi
 #
 #
 %changelog
+* Thu Jul 27 2023 Denys Vlasenko <dvlasenk@redhat.com> [4.18.0-506.el8]
+- libceph: harden msgr2.1 frame segment length checks (Ilya Dryomov) [2222256]
+- netfilter: nf_conntrack_netlink: need to hold rcu readlock when doing l4proto lookup (Florian Westphal) [2188230]
+- net/mlx5: Expose steering dropped packets counter (Amir Tzin) [2223198]
+- net/mlx5: Expose vnic diagnostic counters for eswitch managed vports (Amir Tzin) [2223198]
+- igbvf: add PCI reset handler functions (Corinna Vinschen) [2153365]
+- igbvf: Regard vf reset nack as success (Corinna Vinschen) [2153365]
+- intel/igbvf: free irq on the error path in igbvf_request_msix() (Corinna Vinschen) [2153365]
+- Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp} (Ricardo Robaina) [2139617] {CVE-2022-3640}
+- Bluetooth: L2CAP: Fix build errors in some archs (Ricardo Robaina) [2139617] {CVE-2022-3640}
+- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm regression (Ricardo Robaina) [2139617] {CVE-2022-3640}
+- Bluetooth: L2CAP: fix use-after-free in l2cap_conn_del() (Ricardo Robaina) [2139617] {CVE-2022-3640}
+- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put (Ricardo Robaina) [2139617] {CVE-2022-3640}
+- iavf: fix reset task race with iavf_remove() (Petr Oros) [2223604]
+- iavf: fix a deadlock caused by rtnl and driver's lock circular dependencies (Petr Oros) [2223604]
+- Revert "iavf: Do not restart Tx queues after reset task failure" (Petr Oros) [2223604]
+- Revert "iavf: Detach device during reset task" (Petr Oros) [2223604]
+- iavf: Wait for reset in callbacks which trigger it (Petr Oros) [2223604]
+- iavf: use internal state to free traffic IRQs (Petr Oros) [2223604]
+- iavf: Fix out-of-bounds when setting channels on remove (Petr Oros) [2223604]
+- iavf: Fix use-after-free in free_netdev (Petr Oros) [2223604]
+- iavf: make functions static where possible (Petr Oros) [2223604]
+- iavf: fix err handling for MAC replace (Petr Oros) [2223604]
+- iavf: remove some unused functions and pointless wrappers (Petr Oros) [2223604]
+- iavf: remove mask from iavf_irq_enable_queues() (Petr Oros) [2223604]
+- iavf: send VLAN offloading caps once after VFR (Petr Oros) [2223604]
+- cpufreq: Fix parameter in parse_perf_domain() (Mark Langsdorf) [2181273]
+- cpufreq: intel_pstate: remove MODULE_LICENSE in non-modules (Mark Langsdorf) [2181273]
+- cpufreq: intel_pstate: Adjust balance_performance EPP for Sapphire Rapids (Mark Langsdorf) [2181273]
+- cpufreq: Make kobj_type structure constant (Mark Langsdorf) [2181273]
+- driver core: make kobj_type constant. (Mark Langsdorf) [2181273]
+- cpufreq: Make cpufreq_unregister_driver() return void (Mark Langsdorf) [2181273]
+- drivers/cpufreq: Remove "select SRCU" (Mark Langsdorf) [2181273]
+- cpufreq: intel_pstate: Drop ACPI _PSS states table patching (Mark Langsdorf) [2181273]
+- cpufreq: stats: Convert to use sysfs_emit_at() API (Mark Langsdorf) [2181273]
+- cpufreq: Init completion before kobject_init_and_add() (Mark Langsdorf) [2181273]
+- cpufreq: intel_pstate: Allow EPP 0x80 setting by the firmware (Mark Langsdorf) [2181273]
+- cpufreq: ACPI: Use str_enabled_disabled() helper (Mark Langsdorf) [2181273]
+- cpufreq: Generalize of_perf_domain_get_sharing_cpumask phandle format (Mark Langsdorf) [2181273]
+- cpufreq: Add of_perf_domain_get_sharing_cpumask (Mark Langsdorf) [2181273]
+- cpufreq: intel_pstate: Read all MSRs on the target CPU (Mark Langsdorf) [2181273]
+- ACPI: CPPC: Add ACPI disabled check to acpi_cpc_valid() (Mark Langsdorf) [2181273]
+
 * Tue Jul 25 2023 Denys Vlasenko <dvlasenk@redhat.com> [4.18.0-505.el8]
 - gfs2: Don't deref jdesc in evict (Bob Peterson) [2214356] {CVE-2023-3212}
 - md/raid5: Don't do accounting for non-align read io (Nigel Croxon) [2183033]
diff --git a/sources b/sources
index 74e8f3023..f3859d182 100644
--- a/sources
+++ b/sources
@@ -1,3 +1,3 @@
-SHA512 (linux-4.18.0-505.el8.tar.xz) = 5cd51cc39108455959105e3c596deb46fde3be2cf5a0b4de4f627a0bdf11cfe7030e253f9353b2e5ea7b1006d53c2446c804d38c1446f52f1eef05d2940a818f
-SHA512 (kernel-abi-stablelists-4.18.0-505.tar.bz2) = e6db968d667239f0f52bb82e5eff4c4f77ae579716bf847b2bfef0f50d65ef43f3fff4d750c8792585919c98d21c70509a43081bd1f6d51ecce7de5dc384f9da
-SHA512 (kernel-kabi-dw-4.18.0-505.tar.bz2) = f7bbf94096acc33486535d9eece268c543c6a05d93ee262d64dc22b220f1cb3ff49b4cf091a5c748811c4229fdf674be4c816174575161b0ca5e457726595b32
+SHA512 (linux-4.18.0-506.el8.tar.xz) = 252232c2d8248cd97341be96daac29961b1ce25978760750987f4f38dd4bbbbf364be34764c2d4c3a288020d60646b6d87bb9423adc7d65a826ae50214959476
+SHA512 (kernel-abi-stablelists-4.18.0-506.tar.bz2) = 66307098575a0496c16879342fe4b3535cc244dfd08743a8eea6b87e5b4b2713697345f34554128494c7b45bd759b451477e1ed3f66df41f48417e644942db7a
+SHA512 (kernel-kabi-dw-4.18.0-506.tar.bz2) = f7bbf94096acc33486535d9eece268c543c6a05d93ee262d64dc22b220f1cb3ff49b4cf091a5c748811c4229fdf674be4c816174575161b0ca5e457726595b32