From fb6cb055bb862d457b34b09316924f953c252445 Mon Sep 17 00:00:00 2001 From: Denys Vlasenko Date: Thu, 18 Sep 2025 23:06:04 +0200 Subject: [PATCH] kernel-4.18.0-553.77.1.el8_10 * Thu Sep 18 2025 Denys Vlasenko [4.18.0-553.77.1.el8_10] - net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too (CKI Backport Bot) [RHEL-109847] {CVE-2025-37797} - net_sched: hfsc: Fix a UAF vulnerability in class handling (CKI Backport Bot) [RHEL-109847] {CVE-2025-37797} - net: openvswitch: Fix the dead loop of MPLS parse (Aaron Conole) [RHEL-95609] - sctp: linearize cloned gso packets in sctp_rcv (CKI Backport Bot) [RHEL-113329] {CVE-2025-38718} - firmware: arm_scpi: Ensure scpi_info is not assigned if the probe fails (Charles Mirabile) [RHEL-109394] {CVE-2022-50087} - nfsd: don't ignore the return code of svc_proc_register() (Olga Kornievskaia) [RHEL-111639] {CVE-2025-22026} Resolves: RHEL-109394, RHEL-109847, RHEL-111639, RHEL-113329, RHEL-95609 Signed-off-by: Denys Vlasenko --- kernel.spec | 12 ++++++++++-- sources | 4 ++-- 2 files changed, 12 insertions(+), 4 deletions(-) diff --git a/kernel.spec b/kernel.spec index 4b7eb7fb2..3f7e294aa 100644 --- a/kernel.spec +++ b/kernel.spec @@ -38,10 +38,10 @@ # define buildid .local %define specversion 4.18.0 -%define pkgrelease 553.76.1.el8_10 +%define pkgrelease 553.77.1.el8_10 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 553.76.1%{?dist} +%define specrelease 553.77.1%{?dist} %define pkg_release %{specrelease}%{?buildid} @@ -2705,6 +2705,14 @@ fi # # %changelog +* Thu Sep 18 2025 Denys Vlasenko [4.18.0-553.77.1.el8_10] +- net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too (CKI Backport Bot) [RHEL-109847] {CVE-2025-37797} +- net_sched: hfsc: Fix a UAF vulnerability in class handling (CKI Backport Bot) [RHEL-109847] {CVE-2025-37797} +- net: openvswitch: Fix the dead loop of MPLS parse (Aaron Conole) [RHEL-95609] +- sctp: linearize cloned gso packets in sctp_rcv (CKI Backport Bot) [RHEL-113329] {CVE-2025-38718} +- firmware: arm_scpi: Ensure scpi_info is not assigned if the probe fails (Charles Mirabile) [RHEL-109394] {CVE-2022-50087} +- nfsd: don't ignore the return code of svc_proc_register() (Olga Kornievskaia) [RHEL-111639] {CVE-2025-22026} + * Sun Sep 14 2025 Denys Vlasenko [4.18.0-553.76.1.el8_10] - HID: core: Harden s32ton() against conversion to 0 bits (CKI Backport Bot) [RHEL-111027] {CVE-2025-38556} - HID: stop exporting hid_snto32() (CKI Backport Bot) [RHEL-111027] {CVE-2025-38556} diff --git a/sources b/sources index df24ae488..7fb274871 100644 --- a/sources +++ b/sources @@ -1,3 +1,3 @@ -SHA512 (linux-4.18.0-553.76.1.el8_10.tar.xz) = 10ffdfe04397ac32569e61bcbb50abe44df23b8b0655317b10a427c92696083da83f6564a585f9a35f804825ae5c97eaa31fafd043db3b03ef436cf1ccaf72ff -SHA512 (kernel-abi-stablelists-4.18.0-553.tar.bz2) = 4f4ea07b1f282d6298f01a5ed3363e092e96162079759a6380e88441ded9ca48db210ef7cae32650ae29aa510fe181c3c9c0771f5cb9adac4cc263d942c87d26 +SHA512 (linux-4.18.0-553.77.1.el8_10.tar.xz) = 439c3fcda0c4b3e881a9432ab8adb18fcb369579005021e0d7d85e5a4d28b35d5f067ef35b4751f37dd53dfdb4401cafdbae1a26d4c946dcb0277d95099f502a +SHA512 (kernel-abi-stablelists-4.18.0-553.tar.bz2) = 00e90b21c8a08487054d474b99fe166e1870be3a5cd3572b14a2da3bccd0821ba905a5f3eafbc9f9448b27e0ddc73f9c41d97d20e6cb673adccb686534baba61 SHA512 (kernel-kabi-dw-4.18.0-553.tar.bz2) = 79a9788af0c183f670166700354b6a188c176427a6230b8bfaa2cfdc6a4daa1418bbee98d80b7f6b3195043eeef1ffa6782d03b5a1733b65a90c22f66684941f