From b08efacf3be2f4e86fe6398f03037cc1ba449725 Mon Sep 17 00:00:00 2001 From: CKI KWF Bot Date: Tue, 13 Jan 2026 05:17:28 +0000 Subject: [PATCH] kernel-4.18.0-553.94.1.el8_10 * Tue Jan 13 2026 CKI KWF Bot [4.18.0-553.94.1.el8_10] - net: atlantic: fix fragment overflow handling in RX path (CKI Backport Bot) [RHEL-139482] {CVE-2025-68301} - smb: client: let recv_done verify data_offset, data_length and remaining_data_length (Paulo Alcantara) [RHEL-131387] {CVE-2025-39933} - smb: client: Fix use-after-free in cifs_fill_dirent (CKI Backport Bot) [RHEL-134369] {CVE-2025-38051} Resolves: RHEL-131387, RHEL-134369, RHEL-139482 Signed-off-by: CKI KWF Bot --- kernel.spec | 9 +++++++-- sources | 6 +++--- 2 files changed, 10 insertions(+), 5 deletions(-) diff --git a/kernel.spec b/kernel.spec index 17db33196..af572892c 100644 --- a/kernel.spec +++ b/kernel.spec @@ -38,10 +38,10 @@ # define buildid .local %define specversion 4.18.0 -%define pkgrelease 553.93.1.el8_10 +%define pkgrelease 553.94.1.el8_10 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 553.93.1%{?dist} +%define specrelease 553.94.1%{?dist} %define pkg_release %{specrelease}%{?buildid} @@ -2705,6 +2705,11 @@ fi # # %changelog +* Tue Jan 13 2026 CKI KWF Bot [4.18.0-553.94.1.el8_10] +- net: atlantic: fix fragment overflow handling in RX path (CKI Backport Bot) [RHEL-139482] {CVE-2025-68301} +- smb: client: let recv_done verify data_offset, data_length and remaining_data_length (Paulo Alcantara) [RHEL-131387] {CVE-2025-39933} +- smb: client: Fix use-after-free in cifs_fill_dirent (CKI Backport Bot) [RHEL-134369] {CVE-2025-38051} + * Thu Jan 08 2026 CKI KWF Bot [4.18.0-553.93.1.el8_10] - mm: compaction: update the COMPACT[STALL|FAIL] events properly (Lucas Oakley) [RHEL-132449] - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (Mika Penttilä) [RHEL-125456] {CVE-2025-40096} diff --git a/sources b/sources index 6897279df..7717d230e 100644 --- a/sources +++ b/sources @@ -1,3 +1,3 @@ -SHA512 (linux-4.18.0-553.93.1.el8_10.tar.xz) = ac94daa3cc9a1892fea590bef0b0ee46f9508bebdbb49dcfd6cf84f01f4f043e7f3979604a4857768b07396bc553e7c19e80dcc0b6ecc2bc902cc9c50a1bee73 -SHA512 (kernel-abi-stablelists-4.18.0-553.tar.bz2) = 475830258cc565a2f1d319997d0146b66400c3db7dfd46442d26133d9d28542b54e52a8c63c470a666a27f59dfeb839cfbf710fd40d60eee87f3370339c0c885 -SHA512 (kernel-kabi-dw-4.18.0-553.tar.bz2) = 1a4519cb61aaeed77228bc89adae641de13f1333ac6e961c601ca03b073a958515d738d9016cf8ea0a85de84ead2b98272d26055c62f5784efe5236cba637b6c +SHA512 (linux-4.18.0-553.94.1.el8_10.tar.xz) = 21f6613e80c37c2952a4df6d18554172c761d3428436e3980f7936109bb2d1948dddf949a3f9490fc6a6aed745648b394c1bbfea8d63f6c9c0c8996a44b5a3ec +SHA512 (kernel-abi-stablelists-4.18.0-553.tar.bz2) = c74468e98796c231c65cde465aeb81701e90f77ee561dde40bc468524013b5c18cef7f3d2ef0b8333b505c27915c8b50f2eee8c651ba115e8d654e9414c6980e +SHA512 (kernel-kabi-dw-4.18.0-553.tar.bz2) = 7828813b49be090d4747940093f39146939011c092f3320e36bb880ded917fbed69e5076bbf67d53ab8a1c651ad00d3623eae80251f1bc54a4cd711a7332614a