hpsa: bring back deprecated PCI ids #CFHack #CFHack2024

mptsas: bring back deprecated PCI ids #CFHack #CFHack2024 megaraid_sas: bring back deprecated PCI ids #CFHack #CFHack2024 qla2xxx: bring back deprecated PCI ids #CFHack #CFHack2024 qla4xxx: bring back deprecated PCI ids lpfc: bring back deprecated PCI ids be2iscsi: bring back deprecated PCI ids kernel/rh_messages.h: enable all disabled pci devices by moving to unmaintained Use AlmaLinux OS secure boot cert Debrand for AlmaLinux OS Add KVM support for ppc64le
2026-04-08 22:18:44 +00:00 · 2026-04-08 22:18:44 +00:00 · bcb712773e
commit bcb712773e
parent 3edf35a962 ab3ddd1dc1
5 changed files with 35 additions and 13 deletions
--- a/.gitignore
+++ b/.gitignore
@ -1,6 +1,6 @@
-SOURCES/kernel-abi-stablelists-5.14.0-611.45.1.el9_7.tar.bz2
-SOURCES/kernel-kabi-dw-5.14.0-611.45.1.el9_7.tar.bz2
-SOURCES/linux-5.14.0-611.45.1.el9_7.tar.xz
+SOURCES/kernel-abi-stablelists-5.14.0-611.47.1.el9_7.tar.bz2
+SOURCES/kernel-kabi-dw-5.14.0-611.47.1.el9_7.tar.bz2
+SOURCES/linux-5.14.0-611.47.1.el9_7.tar.xz
 SOURCES/nvidiagpuoot001.x509
 SOURCES/olima1.x509
 SOURCES/olimaca1.x509
--- a/.kernel.metadata
+++ b/.kernel.metadata
@ -1,6 +1,6 @@
-6e96492b1f137d72c09f3aafabf83bcd26198974 SOURCES/kernel-abi-stablelists-5.14.0-611.45.1.el9_7.tar.bz2
-48d08e8831ddd7e34151433a0730613c9dac910a SOURCES/kernel-kabi-dw-5.14.0-611.45.1.el9_7.tar.bz2
-9bb89390b6601d8242f9e6576795cd014b1f3cee SOURCES/linux-5.14.0-611.45.1.el9_7.tar.xz
+f1bf3a3cd8dcea12b1cedf7c2b445b80d7674a70 SOURCES/kernel-abi-stablelists-5.14.0-611.47.1.el9_7.tar.bz2
+ce89facb73b41d959399afdbfca92fd9aebe451a SOURCES/kernel-kabi-dw-5.14.0-611.47.1.el9_7.tar.bz2
+ae67c1f2760a071116d7367ceb7e2326f10349cc SOURCES/linux-5.14.0-611.47.1.el9_7.tar.xz
 4fff8080e88afffc06d8ef5004db8d53bb21237f SOURCES/nvidiagpuoot001.x509
 706ae01dd14efa38f0f565a3706acac19c78df02 SOURCES/olima1.x509
 6e3f0d61414c0b50f48dc2d4c3b3cd024e1c3a43 SOURCES/olimaca1.x509
--- a/SOURCES/Makefile.rhelver
+++ b/SOURCES/Makefile.rhelver
@ -12,7 +12,7 @@ RHEL_MINOR = 7
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 611.45.1
+RHEL_RELEASE = 611.47.1

 #
 # ZSTREAM
--- a/SOURCES/kernel.changelog
+++ b/SOURCES/kernel.changelog
@ -1,3 +1,15 @@
+* Tue Mar 31 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-611.47.1.el9_7]
+- net/mlx5: Fix ECVF vports unload on shutdown flow (CKI Backport Bot) [RHEL-154537] {CVE-2025-38109}
+- netfilter: nf_tables: fix use-after-free in nf_tables_addchain() (CKI Backport Bot) [RHEL-153269] {CVE-2026-23231}
+- ice: Fix PTP NULL pointer dereference during VSI rebuild (CKI Backport Bot) [RHEL-150245] {CVE-2026-23210}
+- netfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate() (CKI Backport Bot) [RHEL-149748] {CVE-2026-23111}
+Resolves: RHEL-149748, RHEL-150245, RHEL-153269, RHEL-154537
+
+* Thu Mar 26 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-611.46.1.el9_7]
+- ice: fix page leak for zero-size Rx descriptors (CKI Backport Bot) [RHEL-154094]
+- net: mana: Reduce waiting time if HWC not responding (Maxim Levitsky) [RHEL-92243]
+Resolves: RHEL-154094, RHEL-92243
+
 * Sat Mar 21 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-611.45.1.el9_7]
 - net/sched: cls_u32: use skb_header_pointer_careful() (Paolo Abeni) [RHEL-150403] {CVE-2026-23204}
 - net: add skb_header_pointer_careful() helper (Paolo Abeni) [RHEL-150403]
--- a/SPECS/kernel.spec
+++ b/SPECS/kernel.spec
@ -165,15 +165,15 @@ Summary: The Linux kernel
 # define buildid .local
 %define specversion 5.14.0
 %define patchversion 5.14
-%define pkgrelease 611.45.1
+%define pkgrelease 611.47.1
 %define kversion 5
-%define tarfile_release 5.14.0-611.45.1.el9_7
+%define tarfile_release 5.14.0-611.47.1.el9_7
 # This is needed to do merge window version magic
 %define patchlevel 14
 # This allows pkg_release to have configurable %%{?dist} tag
-%define specrelease 611.45.1%{?buildid}%{?dist}
+%define specrelease 611.47.1%{?buildid}%{?dist}
 # This defines the kabi tarball version
-%define kabiversion 5.14.0-611.45.1.el9_7
+%define kabiversion 5.14.0-611.47.1.el9_7

 #
 # End of genspec.sh variables
@ -3771,7 +3771,7 @@ fi
 #
 #
 %changelog
-* Wed Apr 01 2026 Andrew Lukoshko <alukoshko@almalinux.org> - 5.14.0-611.45.1
+* Wed Apr 08 2026 Andrew Lukoshko <alukoshko@almalinux.org> - 5.14.0-611.47.1
 - hpsa: bring back deprecated PCI ids #CFHack #CFHack2024
 - mptsas: bring back deprecated PCI ids #CFHack #CFHack2024
 - megaraid_sas: bring back deprecated PCI ids #CFHack #CFHack2024
@ -3782,11 +3782,21 @@ fi
 - kernel/rh_messages.h: enable all disabled pci devices by moving to
  unmaintained

-* Wed Apr 01 2026 Eduard Abdullin <eabdullin@almalinux.org> - 5.14.0-611.45.1
+* Wed Apr 08 2026 Eduard Abdullin <eabdullin@almalinux.org> - 5.14.0-611.47.1
 - Use AlmaLinux OS secure boot cert
 - Debrand for AlmaLinux OS
 - Add KVM support for ppc64le

+* Tue Mar 31 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-611.47.1.el9_7]
+- net/mlx5: Fix ECVF vports unload on shutdown flow (CKI Backport Bot) [RHEL-154537] {CVE-2025-38109}
+- netfilter: nf_tables: fix use-after-free in nf_tables_addchain() (CKI Backport Bot) [RHEL-153269] {CVE-2026-23231}
+- ice: Fix PTP NULL pointer dereference during VSI rebuild (CKI Backport Bot) [RHEL-150245] {CVE-2026-23210}
+- netfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate() (CKI Backport Bot) [RHEL-149748] {CVE-2026-23111}
+
+* Thu Mar 26 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-611.46.1.el9_7]
+- ice: fix page leak for zero-size Rx descriptors (CKI Backport Bot) [RHEL-154094]
+- net: mana: Reduce waiting time if HWC not responding (Maxim Levitsky) [RHEL-92243]
+
 * Sat Mar 21 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-611.45.1.el9_7]
 - net/sched: cls_u32: use skb_header_pointer_careful() (Paolo Abeni) [RHEL-150403] {CVE-2026-23204}
 - net: add skb_header_pointer_careful() helper (Paolo Abeni) [RHEL-150403]