From 8d19e356dff1de89a2d07f62c0f2f2853b9e1f24 Mon Sep 17 00:00:00 2001 From: CKI KWF Bot Date: Fri, 12 Jun 2026 22:18:09 +0000 Subject: [PATCH] kernel-4.18.0-553.134.1.el8_10 * Fri Jun 12 2026 CKI KWF Bot [4.18.0-553.134.1.el8_10] - wifi: mac80211: remove station if connection prep fails (Jose Ignacio Tornos Martinez) [RHEL-180120] {CVE-2026-46125} - wifi: mac80211: drop stray 'static' from fast-RX rx_result (CKI Backport Bot) [RHEL-180058] {CVE-2026-46152} - Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (CKI Backport Bot) [RHEL-179360] {CVE-2026-46056} - netfilter: flowtable: strictly check for maximum number of actions (Florian Westphal) [RHEL-176909] {CVE-2026-43329} - netfilter: nf_tables_offload: add nft_flow_action_entry_next() and use it (Florian Westphal) [RHEL-176909] {CVE-2026-43329} - mptcp: fix slab-use-after-free in __inet_lookup_established (Davide Caratti) [RHEL-171500] {CVE-2026-31669} - xen/privcmd: fix double free via VMA splitting (Vitaly Kuznetsov) [RHEL-172482] {CVE-2026-31787} - wifi: brcmfmac: validate bsscfg indices in IF events (CKI Backport Bot) [RHEL-173853] {CVE-2026-43110} Resolves: RHEL-171500, RHEL-172482, RHEL-173853, RHEL-176909, RHEL-179360, RHEL-180058, RHEL-180120 Signed-off-by: CKI KWF Bot --- kernel.spec | 14 ++++++++++++-- sources | 6 +++--- 2 files changed, 15 insertions(+), 5 deletions(-) diff --git a/kernel.spec b/kernel.spec index db7fc2cc0..c2db6e69a 100644 --- a/kernel.spec +++ b/kernel.spec @@ -38,10 +38,10 @@ # define buildid .local %define specversion 4.18.0 -%define pkgrelease 553.133.1.el8_10 +%define pkgrelease 553.134.1.el8_10 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 553.133.1%{?dist} +%define specrelease 553.134.1%{?dist} %define pkg_release %{specrelease}%{?buildid} @@ -2707,6 +2707,16 @@ fi # # %changelog +* Fri Jun 12 2026 CKI KWF Bot [4.18.0-553.134.1.el8_10] +- wifi: mac80211: remove station if connection prep fails (Jose Ignacio Tornos Martinez) [RHEL-180120] {CVE-2026-46125} +- wifi: mac80211: drop stray 'static' from fast-RX rx_result (CKI Backport Bot) [RHEL-180058] {CVE-2026-46152} +- Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (CKI Backport Bot) [RHEL-179360] {CVE-2026-46056} +- netfilter: flowtable: strictly check for maximum number of actions (Florian Westphal) [RHEL-176909] {CVE-2026-43329} +- netfilter: nf_tables_offload: add nft_flow_action_entry_next() and use it (Florian Westphal) [RHEL-176909] {CVE-2026-43329} +- mptcp: fix slab-use-after-free in __inet_lookup_established (Davide Caratti) [RHEL-171500] {CVE-2026-31669} +- xen/privcmd: fix double free via VMA splitting (Vitaly Kuznetsov) [RHEL-172482] {CVE-2026-31787} +- wifi: brcmfmac: validate bsscfg indices in IF events (CKI Backport Bot) [RHEL-173853] {CVE-2026-43110} + * Wed Jun 10 2026 CKI KWF Bot [4.18.0-553.133.1.el8_10] - Buffer overflow in drivers/xen/sys-hypervisor.c (CKI Backport Bot) [RHEL-172504] {CVE-2026-31786} diff --git a/sources b/sources index 71109d60b..2f76555b9 100644 --- a/sources +++ b/sources @@ -1,3 +1,3 @@ -SHA512 (linux-4.18.0-553.133.1.el8_10.tar.xz) = 86340357756dcf1690fc84e2185a06f5b58be6e95ac7fcb61f91d04e34898665fdfdd44ecc69e31066d17d627102d863c781e878e052ce96c396d1ca0b1629b7 -SHA512 (kernel-abi-stablelists-4.18.0-553.tar.bz2) = af3526ab11e6ea3aef2d2edd899bab206c475de0ea732fb59f9579e76c129ba98505d2a7e655990b1629810dc41ab86d34d1547b18572f338ea97233cd279978 -SHA512 (kernel-kabi-dw-4.18.0-553.tar.bz2) = 7bc7c8964833d000540e3a310c73c473da37773d252e42a1cf16b4ee8a4c5b517f46a947f76a46c8a68cf8bcbb388411e4d31a3301164b8293f61e2570abe081 +SHA512 (linux-4.18.0-553.134.1.el8_10.tar.xz) = 0e3c09586203af95b451dcf4163d74a393e62f67445598d5a1493c853cfc039decbae933ed40d50432c0e4dadaf71c93078d0245da8ee1ac6ad5d57d358b36f8 +SHA512 (kernel-abi-stablelists-4.18.0-553.tar.bz2) = 90982e0f5ceb52c0e86345237073cfe0a9ad56c9a4c139d81b3c83c1d59f81a711f2240c1f85dd3f516191b91a995352597345a0826ca9efb7e4b2f275480c46 +SHA512 (kernel-kabi-dw-4.18.0-553.tar.bz2) = f9e92848dc8eaf074d46303e4001692c6d2420b84945a282c79d5f024fa356558975ff7f3a3dfc58de3f0e7d3cb9d3038d7f76d776bcefad7df77adf9cebc695