From 30f84714a5096ff33bdee31861808497533b4e09 Mon Sep 17 00:00:00 2001
From: eabdullin <ed.abdullin.1@gmail.com>
Date: Mon, 1 Dec 2025 09:13:42 +0000
Subject: [PATCH] Import from CS git

---
 .gitignore        |  2 +-
 .kernel.metadata  |  6 +++---
 SPECS/kernel.spec | 23 +++++++++++++++++++++--
 3 files changed, 25 insertions(+), 6 deletions(-)

diff --git a/.gitignore b/.gitignore
index c4ee8fa5..7b2753c5 100644
--- a/.gitignore
+++ b/.gitignore
@@ -2,7 +2,7 @@ SOURCES/centossecureboot201.cer
 SOURCES/centossecurebootca2.cer
 SOURCES/kernel-abi-stablelists-4.18.0-553.tar.bz2
 SOURCES/kernel-kabi-dw-4.18.0-553.tar.bz2
-SOURCES/linux-4.18.0-553.85.1.el8_10.tar.xz
+SOURCES/linux-4.18.0-553.87.1.el8_10.tar.xz
 SOURCES/redhatsecureboot302.cer
 SOURCES/redhatsecureboot303.cer
 SOURCES/redhatsecureboot501.cer
diff --git a/.kernel.metadata b/.kernel.metadata
index 5e5dd9a1..9f0c379f 100644
--- a/.kernel.metadata
+++ b/.kernel.metadata
@@ -1,8 +1,8 @@
 2ba40bf9138b48311e5aa1b737b7f0a8ad66066f SOURCES/centossecureboot201.cer
 bfdb3d7cffc43f579655af5155d50c08671d95e5 SOURCES/centossecurebootca2.cer
-a34b110fa6d45cc2268ec83087c1368828eccb70 SOURCES/kernel-abi-stablelists-4.18.0-553.tar.bz2
-49b7afc6ac8117cbe2ee06f0639c4fe7a16fb3bc SOURCES/kernel-kabi-dw-4.18.0-553.tar.bz2
-fa1fb52125cee5d045f828d45071b930916440f2 SOURCES/linux-4.18.0-553.85.1.el8_10.tar.xz
+377c8203eaefc0764c1ff933738f6359674640e9 SOURCES/kernel-abi-stablelists-4.18.0-553.tar.bz2
+85b249e36c614e5a95074485eef0813636d50ed2 SOURCES/kernel-kabi-dw-4.18.0-553.tar.bz2
+e5c87c640da3dd6d66252ca0a7fab3d45de3d9e8 SOURCES/linux-4.18.0-553.87.1.el8_10.tar.xz
 13e5cd3f856b472fde80a4deb75f4c18dfb5b255 SOURCES/redhatsecureboot302.cer
 e89890ca0ded2f9058651cc5fa838b78db2e6cc2 SOURCES/redhatsecureboot303.cer
 ba0b760e594ff668ee72ae348adf3e49b97f75fb SOURCES/redhatsecureboot501.cer
diff --git a/SPECS/kernel.spec b/SPECS/kernel.spec
index a5fa96ac..86b4731e 100644
--- a/SPECS/kernel.spec
+++ b/SPECS/kernel.spec
@@ -38,10 +38,10 @@
 # define buildid .local
 
 %define specversion 4.18.0
-%define pkgrelease 553.85.1.el8_10
+%define pkgrelease 553.87.1.el8_10
 
 # allow pkg_release to have configurable %%{?dist} tag
-%define specrelease 553.85.1%{?dist}
+%define specrelease 553.87.1%{?dist}
 
 %define pkg_release %{specrelease}%{?buildid}
 
@@ -2705,6 +2705,25 @@ fi
 #
 #
 %changelog
+* Tue Nov 25 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.87.1.el8_10]
+- tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request(). (Antoine Tenart) [RHEL-120664]
+- tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect(). (Antoine Tenart) [RHEL-120664] {CVE-2025-39955}
+- mm/memory-failure: fix VM_BUG_ON_PAGE(PagePoisoned(page)) when unpoison memory (Audra Mitchell) [RHEL-117059] {CVE-2025-39883}
+
+* Thu Nov 20 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.86.1.el8_10]
+- smb: client: fix race with concurrent opens in rename(2) (Paulo Alcantara) [RHEL-118237] {CVE-2025-39825}
+- smb: client: fix race with concurrent opens in unlink(2) (Paulo Alcantara) [RHEL-118237]
+- e1000e: fix heap overflow in e1000_set_eeprom (Corinna Vinschen) [RHEL-123105] {CVE-2025-39898}
+- nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm() (CKI Backport Bot) [RHEL-125595] {CVE-2025-38724}
+- nbd: fix incomplete validation of ioctl arg (CKI Backport Bot) [RHEL-122965] {CVE-2023-53513}
+- arch/powerpc: commandline option to enable P11 support (Mamatha Inamdar) [RHEL-107921]
+- perf/pmu-events/powerpc: Update json mapfile with Power11 PVR (Mamatha Inamdar) [RHEL-107921]
+- perf vendor events powerpc: Add PVN for HX-C2000 CPU with Power8 Architecture (Mamatha Inamdar) [RHEL-107921]
+- tools/perf/arch/powerpc: Fix the CPU ID const char* value by adding 0x prefix (Mamatha Inamdar) [RHEL-107921]
+- powerpc/perf: Power11 Performance Monitoring support (Mamatha Inamdar) [RHEL-107921]
+- powerpc/perf: Add __init attribute to eligible functions (Mamatha Inamdar) [RHEL-107921]
+- powerpc: Add Power11 architected and raw mode (Mamatha Inamdar) [RHEL-107921]
+
 * Thu Nov 13 2025 Alexandra Hájková <ahajkova@redhat.com> [4.18.0-553.85.1.el8_10]
 - i40e: add mask to apply valid bits for itr_idx (Michal Schmidt) [RHEL-123799]
 - i40e: add max boundary check for VF filters (Michal Schmidt) [RHEL-123799] {CVE-2025-39968}