diff --git a/Makefile.rhelver b/Makefile.rhelver
index 321f4afd8..c74b4d69e 100644
--- a/Makefile.rhelver
+++ b/Makefile.rhelver
@@ -12,7 +12,7 @@ RHEL_MINOR = 6
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 559
+RHEL_RELEASE = 560
 
 #
 # ZSTREAM
diff --git a/kernel.changelog b/kernel.changelog
index 59330eca7..1f1cd0216 100644
--- a/kernel.changelog
+++ b/kernel.changelog
@@ -1,3 +1,66 @@
+* Mon Feb 03 2025 Patrick Talbert <ptalbert@redhat.com> [5.14.0-560.el9]
+- rhel-only: Fix up kfunc definitions in filter.c (Toke Høiland-Jørgensen) [RHEL-65787]
+- selftests/bpf: Test bpf_sock_destroy (Toke Høiland-Jørgensen) [RHEL-65787]
+- selftests/bpf: Add helper to get port using getsockname (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: Add bpf_sock_destroy kfunc (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: Avoid iter->offset making backward progress in bpf_iter_udp (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: iter_udp: Retry with a larger batch size without going back to the previous bucket (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: udp: Implement batching for sockets iterator (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: seq_file: Remove bpf_seq_afinfo from udp_iter_state (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: udp: Encapsulate logic to get udp table (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: seq_file: Helper function to match socket attributes (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: tcp: Avoid taking fast sock lock in iterator (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: Access &udp_table via net. (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: Set NULL to udp_seq_afinfo.udp_table. (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: Set NULL to sk->sk_prot->h.udp_table. (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: Clean up some functions. (Toke Høiland-Jørgensen) [RHEL-65787]
+- exfat: fix the infinite loop in exfat_readdir() (CKI Backport Bot) [RHEL-75663] {CVE-2024-57940}
+- exec: Fix ToCToU between perm check and set-uid/gid usage (CKI Backport Bot) [RHEL-55562] {CVE-2024-43882}
+- net: usb: lan78xx: Fix double free issue with interrupt buffer allocation (CKI Backport Bot) [RHEL-72355] {CVE-2024-53213}
+- net: xgbe: Convert tasklet API to new bottom half workqueue mechanism (Michal Schmidt) [RHEL-62004]
+- net: xgbe: remove extraneous #ifdef checks (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Avoid potential string truncation in name (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: propagate the correct speed and duplex status (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: handle the corner-case during tx completion (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: handle corner-case during sfp hotplug (Michal Schmidt) [RHEL-62004]
+- net: ethernet: Use device_get_match_data() (amd-xgbe) (Michal Schmidt) [RHEL-62004]
+- net: ethernet: amd: Convert to platform remove callback returning void (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: extend 10Mbps support to MAC version 21H (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: fix the false linkup in xgbe_phy_status (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: fix mismatched prototype (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: add support for rx-adaptation (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: add 2.5GbE support to 10G BaseT mode (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Replace MII_ADDR_C45 with XGBE_ADDR_C45 (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Separate C22 and C45 transactions (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Delay AN timeout during KR training (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: TX Flow Ctrl Registers are h/w ver dependent (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Add support for 10 Mbps speed (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: add missed tasklet_kill (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Check only the minimum speed for active/passive cables (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Fix logic around active and passive cables (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: add the bit rate quirk for Molex cables (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: fix the SFP compliance codes check for DAC cables (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: enable PLL_CTL for fixed PHY modes only (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: use enums for mailbox cmd and sub_cmds (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Yellow carp devices do not need rrc (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: fix clang -Wformat warnings (Michal Schmidt) [RHEL-62004]
+- amd/xgbe: fix repeated words in comments (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: fix clang -Wformat warning (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: disable interrupts during pci removal (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: ensure to reset the tx_timer_active flag (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Disable the CDR workaround path for Yellow Carp Devices (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Alter the port speed bit range (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Add Support for Yellow Carp Ethernet device (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Toggle PLL settings during rate change (Michal Schmidt) [RHEL-62004]
+- net: convert users of bitmap_foo() to linkmode_foo() (amd-xgbe) (Michal Schmidt) [RHEL-62004]
+- ethernet: constify references to netdev->dev_addr in drivers (amd-xgbe) (Michal Schmidt) [RHEL-62004]
+- ethernet: Remove redundant 'flush_workqueue()' calls (amd-xgbe) (Michal Schmidt) [RHEL-62004]
+- ethernet: use eth_hw_addr_set() for dev->addr_len cases (amd-xgbe) (Michal Schmidt) [RHEL-62004]
+- signal: restore the override_rlimit logic (Radostin Stoyanov) [RHEL-68020] {CVE-2024-50271}
+- ucounts: Split rlimit and ucount values and max values (Radostin Stoyanov) [RHEL-68020] {CVE-2024-50271}
+- virtio_net: Add hash_key_length check (Jon Maloy) [RHEL-68253] {CVE-2024-53082}
+Resolves: RHEL-55562, RHEL-62004, RHEL-65787, RHEL-68020, RHEL-68253, RHEL-72355, RHEL-75663
+
 * Fri Jan 31 2025 Patrick Talbert <ptalbert@redhat.com> [5.14.0-559.el9]
 - iommufd: Fix struct iommu_hwpt_pgfault init and padding (Eder Zulian) [RHEL-75942]
 - iommufd/fault: Use a separate spinlock to protect fault->deliver list (Eder Zulian) [RHEL-75942]
diff --git a/kernel.spec b/kernel.spec
index ca9b32345..328e29e2a 100755
--- a/kernel.spec
+++ b/kernel.spec
@@ -165,15 +165,15 @@ Summary: The Linux kernel
 # define buildid .local
 %define specversion 5.14.0
 %define patchversion 5.14
-%define pkgrelease 559
+%define pkgrelease 560
 %define kversion 5
-%define tarfile_release 5.14.0-559.el9
+%define tarfile_release 5.14.0-560.el9
 # This is needed to do merge window version magic
 %define patchlevel 14
 # This allows pkg_release to have configurable %%{?dist} tag
-%define specrelease 559%{?buildid}%{?dist}
+%define specrelease 560%{?buildid}%{?dist}
 # This defines the kabi tarball version
-%define kabiversion 5.14.0-559.el9
+%define kabiversion 5.14.0-560.el9
 
 #
 # End of genspec.sh variables
@@ -3785,6 +3785,68 @@ fi
 #
 #
 %changelog
+* Mon Feb 03 2025 Patrick Talbert <ptalbert@redhat.com> [5.14.0-560.el9]
+- rhel-only: Fix up kfunc definitions in filter.c (Toke Høiland-Jørgensen) [RHEL-65787]
+- selftests/bpf: Test bpf_sock_destroy (Toke Høiland-Jørgensen) [RHEL-65787]
+- selftests/bpf: Add helper to get port using getsockname (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: Add bpf_sock_destroy kfunc (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: Avoid iter->offset making backward progress in bpf_iter_udp (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: iter_udp: Retry with a larger batch size without going back to the previous bucket (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: udp: Implement batching for sockets iterator (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: seq_file: Remove bpf_seq_afinfo from udp_iter_state (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: udp: Encapsulate logic to get udp table (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: seq_file: Helper function to match socket attributes (Toke Høiland-Jørgensen) [RHEL-65787]
+- bpf: tcp: Avoid taking fast sock lock in iterator (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: Access &udp_table via net. (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: Set NULL to udp_seq_afinfo.udp_table. (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: Set NULL to sk->sk_prot->h.udp_table. (Toke Høiland-Jørgensen) [RHEL-65787]
+- udp: Clean up some functions. (Toke Høiland-Jørgensen) [RHEL-65787]
+- exfat: fix the infinite loop in exfat_readdir() (CKI Backport Bot) [RHEL-75663] {CVE-2024-57940}
+- exec: Fix ToCToU between perm check and set-uid/gid usage (CKI Backport Bot) [RHEL-55562] {CVE-2024-43882}
+- net: usb: lan78xx: Fix double free issue with interrupt buffer allocation (CKI Backport Bot) [RHEL-72355] {CVE-2024-53213}
+- net: xgbe: Convert tasklet API to new bottom half workqueue mechanism (Michal Schmidt) [RHEL-62004]
+- net: xgbe: remove extraneous #ifdef checks (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Avoid potential string truncation in name (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: propagate the correct speed and duplex status (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: handle the corner-case during tx completion (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: handle corner-case during sfp hotplug (Michal Schmidt) [RHEL-62004]
+- net: ethernet: Use device_get_match_data() (amd-xgbe) (Michal Schmidt) [RHEL-62004]
+- net: ethernet: amd: Convert to platform remove callback returning void (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: extend 10Mbps support to MAC version 21H (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: fix the false linkup in xgbe_phy_status (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: fix mismatched prototype (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: add support for rx-adaptation (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: add 2.5GbE support to 10G BaseT mode (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Replace MII_ADDR_C45 with XGBE_ADDR_C45 (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Separate C22 and C45 transactions (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Delay AN timeout during KR training (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: TX Flow Ctrl Registers are h/w ver dependent (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Add support for 10 Mbps speed (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: add missed tasklet_kill (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Check only the minimum speed for active/passive cables (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Fix logic around active and passive cables (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: add the bit rate quirk for Molex cables (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: fix the SFP compliance codes check for DAC cables (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: enable PLL_CTL for fixed PHY modes only (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: use enums for mailbox cmd and sub_cmds (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: Yellow carp devices do not need rrc (Michal Schmidt) [RHEL-62004]
+- amd-xgbe: fix clang -Wformat warnings (Michal Schmidt) [RHEL-62004]
+- amd/xgbe: fix repeated words in comments (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: fix clang -Wformat warning (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: disable interrupts during pci removal (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: ensure to reset the tx_timer_active flag (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Disable the CDR workaround path for Yellow Carp Devices (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Alter the port speed bit range (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Add Support for Yellow Carp Ethernet device (Michal Schmidt) [RHEL-62004]
+- net: amd-xgbe: Toggle PLL settings during rate change (Michal Schmidt) [RHEL-62004]
+- net: convert users of bitmap_foo() to linkmode_foo() (amd-xgbe) (Michal Schmidt) [RHEL-62004]
+- ethernet: constify references to netdev->dev_addr in drivers (amd-xgbe) (Michal Schmidt) [RHEL-62004]
+- ethernet: Remove redundant 'flush_workqueue()' calls (amd-xgbe) (Michal Schmidt) [RHEL-62004]
+- ethernet: use eth_hw_addr_set() for dev->addr_len cases (amd-xgbe) (Michal Schmidt) [RHEL-62004]
+- signal: restore the override_rlimit logic (Radostin Stoyanov) [RHEL-68020] {CVE-2024-50271}
+- ucounts: Split rlimit and ucount values and max values (Radostin Stoyanov) [RHEL-68020] {CVE-2024-50271}
+- virtio_net: Add hash_key_length check (Jon Maloy) [RHEL-68253] {CVE-2024-53082}
+
 * Fri Jan 31 2025 Patrick Talbert <ptalbert@redhat.com> [5.14.0-559.el9]
 - iommufd: Fix struct iommu_hwpt_pgfault init and padding (Eder Zulian) [RHEL-75942]
 - iommufd/fault: Use a separate spinlock to protect fault->deliver list (Eder Zulian) [RHEL-75942]
diff --git a/sources b/sources
index d1ece2c04..b4160fcd8 100644
--- a/sources
+++ b/sources
@@ -1,3 +1,3 @@
-SHA512 (linux-5.14.0-559.el9.tar.xz) = ac9df4d45a1a46c04e370a6d321ec6d3d7549bd2d51bbc9472b136eff90078af06a2cc8cacfee19d466dbf84fd5d6a660600c14ddef89576692cf6cdf76e08eb
-SHA512 (kernel-abi-stablelists-5.14.0-559.el9.tar.bz2) = c548f8264bc7e8f45923957080dbe43f0ec9a50ce0f52d863aa84fcf75338f57ccce91d6855d790a4b70bb015a795c3b27e4f7cd7e8d0cbbe9a4fc2dc7b71d97
-SHA512 (kernel-kabi-dw-5.14.0-559.el9.tar.bz2) = d030af864f7c666ec6e4e31176aec9191a635a22ec0e63102e2045b1a136e41899ddd61cacb12ffd814cdbbac2e02665a39d8cb49dfb0ad7c2add6972c6cc173
+SHA512 (linux-5.14.0-560.el9.tar.xz) = 6310febf38172cf234435545b1fbcfc34afa582c451f9c019f15ac5677871ff9ec027d6192d3a59a5fa6381273bee40c51dd1cc76c3a766298c809c5838c5340
+SHA512 (kernel-abi-stablelists-5.14.0-560.el9.tar.bz2) = d787810901ba63db3a4f4d358d3066f66daaabc48839374ea342d9a23cb5c0d3dae9c3c1b1bd53b0fff024b3d3913db58cfb828002b569518ca2ae4e9d929f4b
+SHA512 (kernel-kabi-dw-5.14.0-560.el9.tar.bz2) = d030af864f7c666ec6e4e31176aec9191a635a22ec0e63102e2045b1a136e41899ddd61cacb12ffd814cdbbac2e02665a39d8cb49dfb0ad7c2add6972c6cc173