diff --git a/.gitignore b/.gitignore index 8793c87cb..b1dac20cf 100644 --- a/.gitignore +++ b/.gitignore @@ -1,7 +1,7 @@ fedoraimaca.x509 -kernel-abi-stablelists-6.12.0-55.24.1.el10_0.tar.xz -kernel-kabi-dw-6.12.0-55.24.1.el10_0.tar.xz -linux-6.12.0-55.24.1.el10_0.tar.xz +kernel-abi-stablelists-6.12.0-55.25.1.el10_0.tar.xz +kernel-kabi-dw-6.12.0-55.25.1.el10_0.tar.xz +linux-6.12.0-55.25.1.el10_0.tar.xz nvidiagpuoot001.x509 olima1.x509 olimaca1.x509 diff --git a/Makefile.rhelver b/Makefile.rhelver index cb9e20bdb..86c64de27 100644 --- a/Makefile.rhelver +++ b/Makefile.rhelver @@ -12,7 +12,7 @@ RHEL_MINOR = 0 # # Use this spot to avoid future merge conflicts. # Do not trim this comment. -RHEL_RELEASE = 55.24.1 +RHEL_RELEASE = 55.25.1 # # RHEL_REBASE_NUM diff --git a/kernel.spec b/kernel.spec index 68dd8a79d..e6907e675 100644 --- a/kernel.spec +++ b/kernel.spec @@ -162,15 +162,15 @@ Summary: The Linux kernel %define specrpmversion 6.12.0 %define specversion 6.12.0 %define patchversion 6.12 -%define pkgrelease 55.24.1 +%define pkgrelease 55.25.1 %define kversion 6 -%define tarfile_release 6.12.0-55.24.1.el10_0 +%define tarfile_release 6.12.0-55.25.1.el10_0 # This is needed to do merge window version magic %define patchlevel 12 # This allows pkg_release to have configurable %%{?dist} tag -%define specrelease 55.24.1%{?buildid}%{?dist} +%define specrelease 55.25.1%{?buildid}%{?dist} # This defines the kabi tarball version -%define kabiversion 6.12.0-55.24.1.el10_0 +%define kabiversion 6.12.0-55.25.1.el10_0 # If this variable is set to 1, a bpf selftests build failure will cause a # fatal kernel package build error @@ -4359,7 +4359,7 @@ fi\ # # %changelog -* Mon Aug 04 2025 Andrei Lukoshko - 6.12.0-55.24.1 +* Tue Aug 12 2025 Andrei Lukoshko - 6.12.0-55.25.1 - hpsa: bring back deprecated PCI ids #CFHack #CFHack2024 - mptsas: bring back deprecated PCI ids #CFHack #CFHack2024 - megaraid_sas: bring back deprecated PCI ids #CFHack #CFHack2024 @@ -4370,10 +4370,38 @@ fi\ - kernel/rh_messages.h: enable all disabled pci devices by moving to unmaintained -* Mon Aug 04 2025 Eduard Abdullin - 6.12.0-55.24.1 +* Tue Aug 12 2025 Eduard Abdullin - 6.12.0-55.25.1 - Use AlmaLinux OS secure boot cert - Debrand for AlmaLinux OS +* Thu Aug 07 2025 Alex Burmashev [6.12.0-55.25.1.el10_0] +- Bump internal version to 55.25.1 +- net_sched: hfsc: Address reentrant enqueue adding class to eltree twice - CVE-2025-38001 +- sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() - CVE-2025-38000 +- net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc - CVE-2025-37890 +- sch_hfsc: make hfsc_qlen_notify() idempotent +- RDMA/core: Fix "KASAN: slab-use-after-free Read in ib_register_device" problem - CVE-2025-38022 +- RDMA/core: Fix use-after-free when rename device name - CVE-2025-22085 +- nvme-tcp: sanitize request list handling - CVE-2025-38264 +- net: tipc: fix refcount warning in tipc_aead_encrypt +- net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done - CVE-2025-38052 +- tcp: adjust rcvq_space after updating scaling ratio +- ext4: avoid journaling sb update on error if journal is destroying - CVE-2025-22113 +- ext4: define ext4_journal_destroy wrapper - CVE-2025-22113 +- HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove() - CVE-2025-21928 +- HID: intel-ish-hid: Fix use-after-free issue in hid_ishtp_cl_remove() - CVE-2025-21929 +- usb: hub: Fix flushing of delayed work used for post resume purposes +- usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm +- usb: hub: fix detection of high tier USB3 devices behind suspended hubs +- net/sched: fix use-after-free in taprio_dev_notifier - CVE-2025-38087 +- net: ch9200: fix uninitialised access during mii_nway_restart - CVE-2025-38086 +- padata: avoid UAF for reorder_work - CVE-2025-21726 +- padata: fix UAF in padata_reorder - CVE-2025-21727 +- padata: add pd get/put refcnt helper +- padata: fix sysfs store callback check +- padata: Clean up in padata_do_multithreaded() +- memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove - CVE-2025-22020 + * Tue Jul 29 2025 Alex Burmashev [6.12.0-55.24.1.el10_0] - Bump internal version to 55.24.1 - net_sched: hfsc: Fix a UAF vulnerability in class handling - CVE-2025-37797 diff --git a/sources b/sources index f25c362ef..53ceb7298 100644 --- a/sources +++ b/sources @@ -1,7 +1,7 @@ SHA512 (fedoraimaca.x509) = e04809394f4472c17e86d7024dee34f03fb68e82a85502fd5b00535202c72e57626a8376b2cf991b7e1e46404aa5ab8d189ebf320e0dd37d49e7efbc925c7a2e -SHA512 (kernel-abi-stablelists-6.12.0-55.24.1.el10_0.tar.xz) = 6fee4a7489cd6ee6048a2299bb42052b0dad0f40d9edd6f9412286728ddc25e5fd491605c7f176284cce339660d0d2585c02e20b3460ebdef08152a70cb81c33 -SHA512 (kernel-kabi-dw-6.12.0-55.24.1.el10_0.tar.xz) = 95e56376dcb6f68300626e83bc60ca36443866f04e600f0a3eeb459435ee1f1cc3287d578209d5c1522fa0cc3e5a0c7999d573e46c9070bc0001e49c9fb8f9aa -SHA512 (linux-6.12.0-55.24.1.el10_0.tar.xz) = 3ec01979a4e4d85950912596f856f3481b8d227e52b7304839cf8c38965945020aa9bcb6fb51c6b5ba17452e0340625339f2261f62106281e007d7a6a05ae006 +SHA512 (kernel-abi-stablelists-6.12.0-55.25.1.el10_0.tar.xz) = 6fee4a7489cd6ee6048a2299bb42052b0dad0f40d9edd6f9412286728ddc25e5fd491605c7f176284cce339660d0d2585c02e20b3460ebdef08152a70cb81c33 +SHA512 (kernel-kabi-dw-6.12.0-55.25.1.el10_0.tar.xz) = 95e56376dcb6f68300626e83bc60ca36443866f04e600f0a3eeb459435ee1f1cc3287d578209d5c1522fa0cc3e5a0c7999d573e46c9070bc0001e49c9fb8f9aa +SHA512 (linux-6.12.0-55.25.1.el10_0.tar.xz) = 306ae54fa7d55b873784545ea000da96b61b55181f7b1d96b5cc40dbf6c339c32fa5ee0fccc5d3f8d90e976201c3c64ab32369435a9342db5b07e5062fbb168a SHA512 (nvidiagpuoot001.x509) = b42f836e1cfa07890cb6ca13de9c3950e306c9ec7686c4c09f050bb68869f5d82962b2cd5f3aa0eb7a0f3a3ae54e9c480eafbac5df53aa92c295ff511a8c59fe SHA512 (olima1.x509) = 123c26c1d698cc8523845c6e1103b9c72abf855acd225d37baf1f3388a47f912166d6d786fb367fe46de39e011b586ad7f3963aa2e8923da30a6ea9ae0d76ad3 SHA512 (olimaca1.x509) = 3a779415fad29d6f7250ec97ab1f0a5eb62c351b724feee06b22e17f065bf74a558f32cc524d3222c4485635ae5b9cd5287855c94010fe743b51a4d954340c4c