diff --git a/.gitignore b/.gitignore
index 7e9d46c33..569a989d7 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,6 +1,6 @@
-SOURCES/kernel-abi-stablelists-5.14.0-570.51.1.el9_6.tar.bz2
-SOURCES/kernel-kabi-dw-5.14.0-570.51.1.el9_6.tar.bz2
-SOURCES/linux-5.14.0-570.51.1.el9_6.tar.xz
+SOURCES/kernel-abi-stablelists-5.14.0-570.52.1.el9_6.tar.bz2
+SOURCES/kernel-kabi-dw-5.14.0-570.52.1.el9_6.tar.bz2
+SOURCES/linux-5.14.0-570.52.1.el9_6.tar.xz
 SOURCES/nvidiagpuoot001.x509
 SOURCES/olima1.x509
 SOURCES/olimaca1.x509
diff --git a/.kernel.metadata b/.kernel.metadata
index 3680e6001..18ccc6f59 100644
--- a/.kernel.metadata
+++ b/.kernel.metadata
@@ -1,6 +1,6 @@
-873e8a28d094cf1e2cbece9557145265d7790d2a SOURCES/kernel-abi-stablelists-5.14.0-570.51.1.el9_6.tar.bz2
-c3dcedb56d9b45272da69e13a492ad0e86cedd65 SOURCES/kernel-kabi-dw-5.14.0-570.51.1.el9_6.tar.bz2
-48e3aa372ce49dee0166347c22fc335340656d8f SOURCES/linux-5.14.0-570.51.1.el9_6.tar.xz
+cc8c09912b51b4c7e745171806a57ebe3fb37669 SOURCES/kernel-abi-stablelists-5.14.0-570.52.1.el9_6.tar.bz2
+02268c77c7e827a0ce0a528d5a5a779ea5dd8901 SOURCES/kernel-kabi-dw-5.14.0-570.52.1.el9_6.tar.bz2
+3eaa57c7ac8a253dab4a30da9f4c1c75817ae4f7 SOURCES/linux-5.14.0-570.52.1.el9_6.tar.xz
 4fff8080e88afffc06d8ef5004db8d53bb21237f SOURCES/nvidiagpuoot001.x509
 706ae01dd14efa38f0f565a3706acac19c78df02 SOURCES/olima1.x509
 6e3f0d61414c0b50f48dc2d4c3b3cd024e1c3a43 SOURCES/olimaca1.x509
diff --git a/SOURCES/Makefile.rhelver b/SOURCES/Makefile.rhelver
index 11ba8f839..fdd8a18af 100644
--- a/SOURCES/Makefile.rhelver
+++ b/SOURCES/Makefile.rhelver
@@ -12,7 +12,7 @@ RHEL_MINOR = 6
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 570.51.1
+RHEL_RELEASE = 570.52.1
 
 #
 # ZSTREAM
diff --git a/SOURCES/kernel.changelog b/SOURCES/kernel.changelog
index d9de34827..04dc8e317 100644
--- a/SOURCES/kernel.changelog
+++ b/SOURCES/kernel.changelog
@@ -1,3 +1,44 @@
+* Sat Oct 04 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-570.52.1.el9_6]
+- crypto: seqiv - Handle EBUSY correctly (CKI Backport Bot) [RHEL-117232] {CVE-2023-53373}
+- ibmvnic: Increase max subcrq indirect entries with fallback (Mamatha Inamdar) [RHEL-116186]
+- hv_netvsc: Fix panic during namespace deletion with VF (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: Fix DSCP value in modify QP (Maxim Levitsky) [RHEL-115069]
+- net: mana: Handle Reset Request from MANA NIC (Maxim Levitsky) [RHEL-115069]
+- net: mana: Set tx_packets to post gso processing packet count (Maxim Levitsky) [RHEL-115069]
+- net: mana: Handle unsupported HWC commands (Maxim Levitsky) [RHEL-115069]
+- net: mana: Add handler for hardware servicing events (Maxim Levitsky) [RHEL-115069]
+- net: mana: Expose additional hardware counters for drop and TC via ethtool. (Maxim Levitsky) [RHEL-115069]
+- hv_netvsc: Set VF priv_flags to IFF_NO_ADDRCONF before open to prevent IPv6 addrconf (Maxim Levitsky) [RHEL-115069]
+- net: mana: Record doorbell physical address in PF mode (Maxim Levitsky) [RHEL-115069]
+- net: mana: Add support for Multi Vports on Bare metal (Maxim Levitsky) [RHEL-115069]
+- net: mana: Switch to page pool for jumbo frames (Maxim Levitsky) [RHEL-115069]
+- net: mana: Add metadata support for xdp mode (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: Handle net event for pointing to the current netdev (Maxim Levitsky) [RHEL-115069]
+- net: mana: Change the function signature of mana_get_primary_netdev_rcu (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: Ensure variable err is initialized (Maxim Levitsky) [RHEL-115069]
+- net: mana: Add debug logs in MANA network driver (Maxim Levitsky) [RHEL-115069]
+- hv_netvsc: Use VF's tso_max_size value when data path is VF (Maxim Levitsky) [RHEL-115069]
+- net: mana: Allow tso_max_size to go up-to GSO_MAX_SIZE (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: request error CQEs when supported (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: Query feature_flags bitmask from FW (Maxim Levitsky) [RHEL-115069]
+- net: mana: Support holes in device list reply msg (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: Allocate PAGE aligned doorbell index (Maxim Levitsky) [RHEL-115069]
+- hv_netvsc: Link queues to NAPIs (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: use the correct page table index based on hardware page size (Maxim Levitsky) [RHEL-115069]
+- net: mana: Fix doorbell out of order violation and avoid unnecessary doorbell rings (Maxim Levitsky) [RHEL-115069]
+- net: mana: Fix RX buf alloc_size alignment and atomic op panic (Maxim Levitsky) [RHEL-115069]
+- ALSA: usb-audio: Validate UAC3 power domain descriptors, too (CKI Backport Bot) [RHEL-114688] {CVE-2025-38729}
+- ALSA: usb-audio: Fix size validation in convert_chmap_v3() (CKI Backport Bot) [RHEL-114688]
+- ALSA: usb-audio: Validate UAC3 cluster segment descriptors (CKI Backport Bot) [RHEL-114688] {CVE-2025-39757}
+- HID: core: Harden s32ton() against conversion to 0 bits (CKI Backport Bot) [RHEL-111036] {CVE-2025-38556}
+- HID: stop exporting hid_snto32() (CKI Backport Bot) [RHEL-111036] {CVE-2025-38556}
+- HID: simplify snto32() (CKI Backport Bot) [RHEL-111036] {CVE-2025-38556}
+- eventpoll: Fix semi-unbounded recursion (CKI Backport Bot) [RHEL-111052] {CVE-2025-38614}
+- smb: client: fix session setup against servers that require SPN (Paulo Alcantara) [RHEL-107109]
+- smb: client: allow parsing zero-length AV pairs (Paulo Alcantara) [RHEL-107109]
+Resolves: RHEL-107109, RHEL-111036, RHEL-111052, RHEL-114688, RHEL-115069, RHEL-116186, RHEL-117232
+
 * Sat Sep 27 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-570.51.1.el9_6]
 - wifi: ath12k: Decrement TID on RX peer frag setup error handling (CKI Backport Bot) [RHEL-114705] {CVE-2025-39761}
 - RDMA/cxgb4: Notify rdma stack for IB_EVENT_QP_LAST_WQE_REACHED event (CKI Backport Bot) [RHEL-100798]
diff --git a/SPECS/kernel.spec b/SPECS/kernel.spec
index 5ea2c8b16..27a11ac28 100644
--- a/SPECS/kernel.spec
+++ b/SPECS/kernel.spec
@@ -165,15 +165,15 @@ Summary: The Linux kernel
 # define buildid .local
 %define specversion 5.14.0
 %define patchversion 5.14
-%define pkgrelease 570.51.1
+%define pkgrelease 570.52.1
 %define kversion 5
-%define tarfile_release 5.14.0-570.51.1.el9_6
+%define tarfile_release 5.14.0-570.52.1.el9_6
 # This is needed to do merge window version magic
 %define patchlevel 14
 # This allows pkg_release to have configurable %%{?dist} tag
-%define specrelease 570.51.1%{?buildid}%{?dist}
+%define specrelease 570.52.1%{?buildid}%{?dist}
 # This defines the kabi tarball version
-%define kabiversion 5.14.0-570.51.1.el9_6
+%define kabiversion 5.14.0-570.52.1.el9_6
 
 #
 # End of genspec.sh variables
@@ -3866,7 +3866,7 @@ fi
 #
 #
 %changelog
-* Wed Oct 08 2025 Andrew Lukoshko <alukoshko@almalinux.org> - 5.14.0-570.51.1
+* Wed Oct 15 2025 Andrew Lukoshko <alukoshko@almalinux.org> - 5.14.0-570.52.1
 - hpsa: bring back deprecated PCI ids #CFHack #CFHack2024
 - mptsas: bring back deprecated PCI ids #CFHack #CFHack2024
 - megaraid_sas: bring back deprecated PCI ids #CFHack #CFHack2024
@@ -3878,11 +3878,51 @@ fi
   unmaintained
 - NFSD: fix hang in nfsd4_shutdown_callback
 
-* Wed Oct 08 2025 Eduard Abdullin <eabdullin@almalinux.org> - 5.14.0-570.51.1
+* Wed Oct 15 2025 Eduard Abdullin <eabdullin@almalinux.org> - 5.14.0-570.52.1
 - Use AlmaLinux OS secure boot cert
 - Debrand for AlmaLinux OS
 - Add KVM support for ppc64le
 
+* Sat Oct 04 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-570.52.1.el9_6]
+- crypto: seqiv - Handle EBUSY correctly (CKI Backport Bot) [RHEL-117232] {CVE-2023-53373}
+- ibmvnic: Increase max subcrq indirect entries with fallback (Mamatha Inamdar) [RHEL-116186]
+- hv_netvsc: Fix panic during namespace deletion with VF (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: Fix DSCP value in modify QP (Maxim Levitsky) [RHEL-115069]
+- net: mana: Handle Reset Request from MANA NIC (Maxim Levitsky) [RHEL-115069]
+- net: mana: Set tx_packets to post gso processing packet count (Maxim Levitsky) [RHEL-115069]
+- net: mana: Handle unsupported HWC commands (Maxim Levitsky) [RHEL-115069]
+- net: mana: Add handler for hardware servicing events (Maxim Levitsky) [RHEL-115069]
+- net: mana: Expose additional hardware counters for drop and TC via ethtool. (Maxim Levitsky) [RHEL-115069]
+- hv_netvsc: Set VF priv_flags to IFF_NO_ADDRCONF before open to prevent IPv6 addrconf (Maxim Levitsky) [RHEL-115069]
+- net: mana: Record doorbell physical address in PF mode (Maxim Levitsky) [RHEL-115069]
+- net: mana: Add support for Multi Vports on Bare metal (Maxim Levitsky) [RHEL-115069]
+- net: mana: Switch to page pool for jumbo frames (Maxim Levitsky) [RHEL-115069]
+- net: mana: Add metadata support for xdp mode (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: Handle net event for pointing to the current netdev (Maxim Levitsky) [RHEL-115069]
+- net: mana: Change the function signature of mana_get_primary_netdev_rcu (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: Ensure variable err is initialized (Maxim Levitsky) [RHEL-115069]
+- net: mana: Add debug logs in MANA network driver (Maxim Levitsky) [RHEL-115069]
+- hv_netvsc: Use VF's tso_max_size value when data path is VF (Maxim Levitsky) [RHEL-115069]
+- net: mana: Allow tso_max_size to go up-to GSO_MAX_SIZE (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: request error CQEs when supported (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: Query feature_flags bitmask from FW (Maxim Levitsky) [RHEL-115069]
+- net: mana: Support holes in device list reply msg (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: Allocate PAGE aligned doorbell index (Maxim Levitsky) [RHEL-115069]
+- hv_netvsc: Link queues to NAPIs (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page (Maxim Levitsky) [RHEL-115069]
+- RDMA/mana_ib: use the correct page table index based on hardware page size (Maxim Levitsky) [RHEL-115069]
+- net: mana: Fix doorbell out of order violation and avoid unnecessary doorbell rings (Maxim Levitsky) [RHEL-115069]
+- net: mana: Fix RX buf alloc_size alignment and atomic op panic (Maxim Levitsky) [RHEL-115069]
+- ALSA: usb-audio: Validate UAC3 power domain descriptors, too (CKI Backport Bot) [RHEL-114688] {CVE-2025-38729}
+- ALSA: usb-audio: Fix size validation in convert_chmap_v3() (CKI Backport Bot) [RHEL-114688]
+- ALSA: usb-audio: Validate UAC3 cluster segment descriptors (CKI Backport Bot) [RHEL-114688] {CVE-2025-39757}
+- HID: core: Harden s32ton() against conversion to 0 bits (CKI Backport Bot) [RHEL-111036] {CVE-2025-38556}
+- HID: stop exporting hid_snto32() (CKI Backport Bot) [RHEL-111036] {CVE-2025-38556}
+- HID: simplify snto32() (CKI Backport Bot) [RHEL-111036] {CVE-2025-38556}
+- eventpoll: Fix semi-unbounded recursion (CKI Backport Bot) [RHEL-111052] {CVE-2025-38614}
+- smb: client: fix session setup against servers that require SPN (Paulo Alcantara) [RHEL-107109]
+- smb: client: allow parsing zero-length AV pairs (Paulo Alcantara) [RHEL-107109]
+
 * Sat Sep 27 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-570.51.1.el9_6]
 - wifi: ath12k: Decrement TID on RX peer frag setup error handling (CKI Backport Bot) [RHEL-114705] {CVE-2025-39761}
 - RDMA/cxgb4: Notify rdma stack for IB_EVENT_QP_LAST_WQE_REACHED event (CKI Backport Bot) [RHEL-100798]