diff --git a/.gitignore b/.gitignore
index b0e15f6ed..49ca7db69 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,6 +1,6 @@
-SOURCES/kernel-abi-stablelists-5.14.0-570.44.1.el9_6.tar.bz2
-SOURCES/kernel-kabi-dw-5.14.0-570.44.1.el9_6.tar.bz2
-SOURCES/linux-5.14.0-570.44.1.el9_6.tar.xz
+SOURCES/kernel-abi-stablelists-5.14.0-570.46.1.el9_6.tar.bz2
+SOURCES/kernel-kabi-dw-5.14.0-570.46.1.el9_6.tar.bz2
+SOURCES/linux-5.14.0-570.46.1.el9_6.tar.xz
 SOURCES/nvidiagpuoot001.x509
 SOURCES/olima1.x509
 SOURCES/olimaca1.x509
diff --git a/.kernel.metadata b/.kernel.metadata
index 49391aacd..d6217b80b 100644
--- a/.kernel.metadata
+++ b/.kernel.metadata
@@ -1,6 +1,6 @@
-571509ae316cb758587739cdca65225ccab2882f SOURCES/kernel-abi-stablelists-5.14.0-570.44.1.el9_6.tar.bz2
-e642f888446ef7e07d43589dd8cbd3e3cfcf7ac4 SOURCES/kernel-kabi-dw-5.14.0-570.44.1.el9_6.tar.bz2
-8033d40546a08a34d7ebc1d6b91fb16088758fc8 SOURCES/linux-5.14.0-570.44.1.el9_6.tar.xz
+c4b6610a15602601dc1810d502e33a27df38a91a SOURCES/kernel-abi-stablelists-5.14.0-570.46.1.el9_6.tar.bz2
+e1750e568ae824777911a4bf2cf6db8a27e0c039 SOURCES/kernel-kabi-dw-5.14.0-570.46.1.el9_6.tar.bz2
+2b6a80c620fc7fc775696743e7aa02730237a990 SOURCES/linux-5.14.0-570.46.1.el9_6.tar.xz
 4fff8080e88afffc06d8ef5004db8d53bb21237f SOURCES/nvidiagpuoot001.x509
 706ae01dd14efa38f0f565a3706acac19c78df02 SOURCES/olima1.x509
 6e3f0d61414c0b50f48dc2d4c3b3cd024e1c3a43 SOURCES/olimaca1.x509
diff --git a/SOURCES/Makefile.rhelver b/SOURCES/Makefile.rhelver
index c421cef1a..829a7fda2 100644
--- a/SOURCES/Makefile.rhelver
+++ b/SOURCES/Makefile.rhelver
@@ -12,7 +12,7 @@ RHEL_MINOR = 6
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 570.44.1
+RHEL_RELEASE = 570.46.1
 
 #
 # ZSTREAM
diff --git a/SOURCES/kernel.changelog b/SOURCES/kernel.changelog
index d3dad7593..d1074f505 100644
--- a/SOURCES/kernel.changelog
+++ b/SOURCES/kernel.changelog
@@ -1,3 +1,25 @@
+* Tue Sep 16 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-570.46.1.el9_6]
+- net: usb: smsc75xx: Move packet length check to prevent kernel panic in skb_pull (CKI Backport Bot) [RHEL-112246] {CVE-2023-53125}
+- net: usb: smsc75xx: Limit packet length to skb->len (CKI Backport Bot) [RHEL-112246] {CVE-2023-53125}
+- s390/sclp: Fix SCCB present check (CKI Backport Bot) [RHEL-113558] {CVE-2025-39694}
+- use uniform permission checks for all mount propagation changes (Ian Kent) [RHEL-107301] {CVE-2025-38498}
+- do_change_type(): refuse to operate on unmounted/not ours mounts (Ian Kent) [RHEL-107301] {CVE-2025-38498}
+- usb: dwc3: gadget: check that event count does not exceed event buffer length (CKI Backport Bot) [RHEL-107649] {CVE-2025-37810}
+Resolves: RHEL-107301, RHEL-107649, RHEL-112246, RHEL-113558
+
+* Sat Sep 13 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-570.45.1.el9_6]
+- tunnels: Accept PACKET_HOST in skb_tunnel_check_pmtu(). (Adrian Moreno) [RHEL-113279]
+- igc: fix lock order in igc_ptp_reset (CKI Backport Bot) [RHEL-108118]
+- igc: add lock preventing multiple simultaneous PTM transactions (CKI Backport Bot) [RHEL-108118]
+- igc: cleanup PTP module if probe fails (CKI Backport Bot) [RHEL-108118]
+- igc: handle the IGC_PTP_ENABLED flag correctly (CKI Backport Bot) [RHEL-108118]
+- igc: move ktime snapshot into PTM retry loop (CKI Backport Bot) [RHEL-108118]
+- igc: increase wait time before retrying PTM (CKI Backport Bot) [RHEL-108118]
+- igc: fix PTM cycle trigger logic (CKI Backport Bot) [RHEL-108118]
+- ice: use fixed adapter index for E825C embedded devices (CKI Backport Bot) [RHEL-111766]
+- ice: use DSN instead of PCI BDF for ice_adapter index (CKI Backport Bot) [RHEL-111766]
+Resolves: RHEL-108118, RHEL-111766, RHEL-113279
+
 * Tue Sep 09 2025 Chao YE <cye@redhat.com> [5.14.0-570.44.1.el9_6]
 - ipv6: mcast: Delay put pmc->idev in mld_del_delrec() (CKI Backport Bot) [RHEL-111149] {CVE-2025-38550}
 - posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() (CKI Backport Bot) [RHEL-112780] {CVE-2025-38352}
diff --git a/SPECS/kernel.spec b/SPECS/kernel.spec
index b00f79eef..592219b4c 100644
--- a/SPECS/kernel.spec
+++ b/SPECS/kernel.spec
@@ -165,15 +165,15 @@ Summary: The Linux kernel
 # define buildid .local
 %define specversion 5.14.0
 %define patchversion 5.14
-%define pkgrelease 570.44.1
+%define pkgrelease 570.46.1
 %define kversion 5
-%define tarfile_release 5.14.0-570.44.1.el9_6
+%define tarfile_release 5.14.0-570.46.1.el9_6
 # This is needed to do merge window version magic
 %define patchlevel 14
 # This allows pkg_release to have configurable %%{?dist} tag
-%define specrelease 570.44.1%{?buildid}%{?dist}
+%define specrelease 570.46.1%{?buildid}%{?dist}
 # This defines the kabi tarball version
-%define kabiversion 5.14.0-570.44.1.el9_6
+%define kabiversion 5.14.0-570.46.1.el9_6
 
 #
 # End of genspec.sh variables
@@ -3866,7 +3866,7 @@ fi
 #
 #
 %changelog
-* Wed Sep 17 2025 Andrew Lukoshko <alukoshko@almalinux.org> - 5.14.0-570.44.1
+* Wed Sep 24 2025 Andrew Lukoshko <alukoshko@almalinux.org> - 5.14.0-570.46.1
 - hpsa: bring back deprecated PCI ids #CFHack #CFHack2024
 - mptsas: bring back deprecated PCI ids #CFHack #CFHack2024
 - megaraid_sas: bring back deprecated PCI ids #CFHack #CFHack2024
@@ -3878,11 +3878,31 @@ fi
   unmaintained
 - NFSD: fix hang in nfsd4_shutdown_callback
 
-* Wed Sep 17 2025 Eduard Abdullin <eabdullin@almalinux.org> - 5.14.0-570.44.1
+* Wed Sep 24 2025 Eduard Abdullin <eabdullin@almalinux.org> - 5.14.0-570.46.1
 - Use AlmaLinux OS secure boot cert
 - Debrand for AlmaLinux OS
 - Add KVM support for ppc64le
 
+* Tue Sep 16 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-570.46.1.el9_6]
+- net: usb: smsc75xx: Move packet length check to prevent kernel panic in skb_pull (CKI Backport Bot) [RHEL-112246] {CVE-2023-53125}
+- net: usb: smsc75xx: Limit packet length to skb->len (CKI Backport Bot) [RHEL-112246] {CVE-2023-53125}
+- s390/sclp: Fix SCCB present check (CKI Backport Bot) [RHEL-113558] {CVE-2025-39694}
+- use uniform permission checks for all mount propagation changes (Ian Kent) [RHEL-107301] {CVE-2025-38498}
+- do_change_type(): refuse to operate on unmounted/not ours mounts (Ian Kent) [RHEL-107301] {CVE-2025-38498}
+- usb: dwc3: gadget: check that event count does not exceed event buffer length (CKI Backport Bot) [RHEL-107649] {CVE-2025-37810}
+
+* Sat Sep 13 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-570.45.1.el9_6]
+- tunnels: Accept PACKET_HOST in skb_tunnel_check_pmtu(). (Adrian Moreno) [RHEL-113279]
+- igc: fix lock order in igc_ptp_reset (CKI Backport Bot) [RHEL-108118]
+- igc: add lock preventing multiple simultaneous PTM transactions (CKI Backport Bot) [RHEL-108118]
+- igc: cleanup PTP module if probe fails (CKI Backport Bot) [RHEL-108118]
+- igc: handle the IGC_PTP_ENABLED flag correctly (CKI Backport Bot) [RHEL-108118]
+- igc: move ktime snapshot into PTM retry loop (CKI Backport Bot) [RHEL-108118]
+- igc: increase wait time before retrying PTM (CKI Backport Bot) [RHEL-108118]
+- igc: fix PTM cycle trigger logic (CKI Backport Bot) [RHEL-108118]
+- ice: use fixed adapter index for E825C embedded devices (CKI Backport Bot) [RHEL-111766]
+- ice: use DSN instead of PCI BDF for ice_adapter index (CKI Backport Bot) [RHEL-111766]
+
 * Tue Sep 09 2025 Chao YE <cye@redhat.com> [5.14.0-570.44.1.el9_6]
 - ipv6: mcast: Delay put pmc->idev in mld_del_delrec() (CKI Backport Bot) [RHEL-111149] {CVE-2025-38550}
 - posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() (CKI Backport Bot) [RHEL-112780] {CVE-2025-38352}