hpsa: bring back deprecated PCI ids #CFHack #CFHack2024

mptsas: bring back deprecated PCI ids #CFHack #CFHack2024

megaraid_sas: bring back deprecated PCI ids #CFHack #CFHack2024

qla2xxx: bring back deprecated PCI ids #CFHack #CFHack2024

qla4xxx: bring back deprecated PCI ids

lpfc: bring back deprecated PCI ids

be2iscsi: bring back deprecated PCI ids

kernel/rh_messages.h: enable all disabled pci devices by moving to unmaintained

Use AlmaLinux OS secure boot cert

Debrand for AlmaLinux OS

.gitignore

@@ -1,7 +1,7 @@
 fedoraimaca.x509
-kernel-abi-stablelists-6.12.0-55.34.1.el10_0.tar.xz
-kernel-kabi-dw-6.12.0-55.34.1.el10_0.tar.xz
-linux-6.12.0-55.34.1.el10_0.tar.xz
+kernel-abi-stablelists-6.12.0-55.37.1.el10_0.tar.xz
+kernel-kabi-dw-6.12.0-55.37.1.el10_0.tar.xz
+linux-6.12.0-55.37.1.el10_0.tar.xz
 nvidiagpuoot001.x509
 olima1.x509
 olimaca1.x509

Makefile.rhelver

@@ -12,7 +12,7 @@ RHEL_MINOR = 0
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 55.34.1
+RHEL_RELEASE = 55.37.1
 
 #
 # RHEL_REBASE_NUM

kernel.spec

@@ -162,15 +162,15 @@ Summary: The Linux kernel
 %define specrpmversion 6.12.0
 %define specversion 6.12.0
 %define patchversion 6.12
-%define pkgrelease 55.34.1
+%define pkgrelease 55.37.1
 %define kversion 6
-%define tarfile_release 6.12.0-55.34.1.el10_0
+%define tarfile_release 6.12.0-55.37.1.el10_0
 # This is needed to do merge window version magic
 %define patchlevel 12
 # This allows pkg_release to have configurable %%{?dist} tag
-%define specrelease 55.34.1%{?buildid}%{?dist}
+%define specrelease 55.37.1%{?buildid}%{?dist}
 # This defines the kabi tarball version
-%define kabiversion 6.12.0-55.34.1.el10_0
+%define kabiversion 6.12.0-55.37.1.el10_0
 
 # If this variable is set to 1, a bpf selftests build failure will cause a
 # fatal kernel package build error
@@ -4363,7 +4363,7 @@ fi\
 #
 #
 %changelog
-* Thu Sep 25 2025 Andrei Lukoshko <alukoshko@almalinux.org> - 6.12.0-55.34.1
+* Thu Oct 02 2025 Andrei Lukoshko <alukoshko@almalinux.org> - 6.12.0-55.37.1
 - hpsa: bring back deprecated PCI ids #CFHack #CFHack2024
 - mptsas: bring back deprecated PCI ids #CFHack #CFHack2024
 - megaraid_sas: bring back deprecated PCI ids #CFHack #CFHack2024
@@ -4374,10 +4374,37 @@ fi\
 - kernel/rh_messages.h: enable all disabled pci devices by moving to
   unmaintained
 
-* Thu Sep 25 2025 Eduard Abdullin <eabdullin@almalinux.org> - 6.12.0-55.34.1
+* Thu Oct 02 2025 Eduard Abdullin <eabdullin@almalinux.org> - 6.12.0-55.37.1
 - Use AlmaLinux OS secure boot cert
 - Debrand for AlmaLinux OS
 
+* Wed Oct 01 2025 Alex Burmashev <alexander.burmashev@oracle.com> [6.12.0-55.37.1.el10_0]
+- fix kABI build errors
+- Adjust new tls selftest for current code
+- Bump internal version to 55.37.1
+- selftests: tls: add tests for zero-length records - CVE-2025-39682
+- tls: fix handling of zero-length records on the rx_list - CVE-2025-39682
+- fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass - CVE-2025-38396
+- io_uring/futex: ensure io_futex_wait() cleans up properly on failure - CVE-2025-39698
+- ice: use fixed adapter index for E825C embedded devices
+- ice: use DSN instead of PCI BDF for ice_adapter index
+- tcp: drop secpath at the same time as we currently drop dst
+- cifs: Fix reading into an ITER_FOLIOQ from the smbdirect code
+- cifs: Fix the smbd_response slab to allow usercopy - CVE-2025-38523
+- smb: client: let smbd_post_send_iter() respect the peers max_send_size and transmit all data
+- smb: client: fix max_sge overflow in smb_extract_folioq_to_rdma()
+- smb: client: make use of common smbdirect_socket_parameters
+- smb: smbdirect: introduce smbdirect_socket_parameters
+- smb: client: make use of common smbdirect_socket
+- smb: smbdirect: add smbdirect_socket.h
+- smb: client: make use of common smbdirect.h
+- smb: smbdirect: add smbdirect.h with public structures
+- smb: client: make use of common smbdirect_pdu.h
+- smb: smbdirect: add smbdirect_pdu.h with protocol definitions
+- s390/sclp: Fix SCCB present check - CVE-2025-39694
+- net: stmmac: fix TSO DMA API usage causing oops
+- smb: client: fix use-after-free in cifs_oplock_break - CVE-2025-38527
+
 * Wed Sep 24 2025 Alex Burmashev <alexander.burmashev@oracle.com> [6.12.0-55.34.1.el10_0]
 - Bump internal version to 55.34.1
 - sunrpc: fix handling of server side tls alerts - CVE-2025-38566

sources

@@ -1,7 +1,7 @@
 SHA512 (fedoraimaca.x509) = e04809394f4472c17e86d7024dee34f03fb68e82a85502fd5b00535202c72e57626a8376b2cf991b7e1e46404aa5ab8d189ebf320e0dd37d49e7efbc925c7a2e
-SHA512 (kernel-abi-stablelists-6.12.0-55.34.1.el10_0.tar.xz) = 6fee4a7489cd6ee6048a2299bb42052b0dad0f40d9edd6f9412286728ddc25e5fd491605c7f176284cce339660d0d2585c02e20b3460ebdef08152a70cb81c33
-SHA512 (kernel-kabi-dw-6.12.0-55.34.1.el10_0.tar.xz) = 95e56376dcb6f68300626e83bc60ca36443866f04e600f0a3eeb459435ee1f1cc3287d578209d5c1522fa0cc3e5a0c7999d573e46c9070bc0001e49c9fb8f9aa
-SHA512 (linux-6.12.0-55.34.1.el10_0.tar.xz) = ec62fd0ee785f922f83c76c84c709f2d49cd7ed161633fb6ff68702bfc00abed7e4e6057e4611a0704590543adca62e960c2a58748a2ba31cd1f21e580bee92f
+SHA512 (kernel-abi-stablelists-6.12.0-55.37.1.el10_0.tar.xz) = 6fee4a7489cd6ee6048a2299bb42052b0dad0f40d9edd6f9412286728ddc25e5fd491605c7f176284cce339660d0d2585c02e20b3460ebdef08152a70cb81c33
+SHA512 (kernel-kabi-dw-6.12.0-55.37.1.el10_0.tar.xz) = 95e56376dcb6f68300626e83bc60ca36443866f04e600f0a3eeb459435ee1f1cc3287d578209d5c1522fa0cc3e5a0c7999d573e46c9070bc0001e49c9fb8f9aa
+SHA512 (linux-6.12.0-55.37.1.el10_0.tar.xz) = 76d83cd7f97c3cc16ee9db023cc59e758c5a6cecddf6dd5594e1776327fb1c10de62ad38db0ed8d0e3c8075bb85626ee77d6d887563b4b92bc6d5d5ca6d2b753
 SHA512 (nvidiagpuoot001.x509) = b42f836e1cfa07890cb6ca13de9c3950e306c9ec7686c4c09f050bb68869f5d82962b2cd5f3aa0eb7a0f3a3ae54e9c480eafbac5df53aa92c295ff511a8c59fe
 SHA512 (olima1.x509) = 123c26c1d698cc8523845c6e1103b9c72abf855acd225d37baf1f3388a47f912166d6d786fb367fe46de39e011b586ad7f3963aa2e8923da30a6ea9ae0d76ad3
 SHA512 (olimaca1.x509) = 3a779415fad29d6f7250ec97ab1f0a5eb62c351b724feee06b22e17f065bf74a558f32cc524d3222c4485635ae5b9cd5287855c94010fe743b51a4d954340c4c