Пакет kernel-rt-modules-4.18.0-553.94.1.rt7.435.el8_10.x86_64 content_copy download

×

* Tue Jan 13 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.94.1.rt7.435.el8_10]
- net: atlantic: fix fragment overflow handling in RX path (CKI Backport Bot) [RHEL-139482] {CVE-2025-68301}
- smb: client: let recv_done verify data_offset, data_length and remaining_data_length (Paulo Alcantara) [RHEL-131387] {CVE-2025-39933}
- smb: client: Fix use-after-free in cifs_fill_dirent (CKI Backport Bot) [RHEL-134369] {CVE-2025-38051}

* Thu Jan 08 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.93.1.rt7.434.el8_10]
- mm: compaction: update the COMPACT[STALL|FAIL] events properly (Lucas Oakley) [RHEL-132449]
- drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (Mika Penttilä) [RHEL-125456] {CVE-2025-40096}
- drm/i915: mark requests for GuC virtual engines to avoid use-after-free (CKI Backport Bot) [RHEL-124682] {CVE-2023-53552}

* Tue Jan 06 2026 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.92.1.rt7.433.el8_10]
- libceph: fix potential use-after-free in have_mon_and_osd_map() (CKI Backport Bot) [RHEL-137395] {CVE-2025-68285}
- media: rc: fix races with imon_disconnect() (Kate Hsuan) [RHEL-124396] {CVE-2025-39993}
- media: imon: fix a race condition in send_packet() (Kate Hsuan) [RHEL-124396]
- media: imon: reorganize serialization (Kate Hsuan) [RHEL-124396]
- media: imon: drop references only after device is no longer used (Kate Hsuan) [RHEL-124396]
- media: rc: Add support for another iMON 0xffdc device (Kate Hsuan) [RHEL-124396]

* Tue Dec 23 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.91.1.rt7.432.el8_10]
- gfs2: Do not cancel internal demote requests (Andreas Gruenbacher) [RHEL-135355]
- gfs2: run_queue cleanup (Andreas Gruenbacher) [RHEL-135355]
- gfs2: simplify finish_xmote (Andreas Gruenbacher) [RHEL-135355]
- gfs2: Get rid of unnecessary test_and_set_bit (Andreas Gruenbacher) [RHEL-135355]
- gfs2: Retries missing in gfs2_{rename,exchange} (Andreas Gruenbacher) [RHEL-135355]
- gfs2: glock cancelation flag fix (Andreas Gruenbacher) [RHEL-135355]
- gfs2: Minor do_xmote cancelation fix (Andreas Gruenbacher) [RHEL-135355]
- sctp: avoid NULL dereference when chunk data buffer is missing (CKI Backport Bot) [RHEL-133999] {CVE-2025-40240}
- redhat: introduce RELEASE_LOCALVERSION variable (Jan Stancek)
- cifs: fix automount with passwords that contain commas (Paulo Alcantara) [RHEL-125963]
- perf/x86/intel/ds: Fix the conversion from TSC to perf time (Anubhav Shelat) [RHEL-127171]
- perf/x86/intel/pebs: Fix PEBS timestamps overwritten (Anubhav Shelat) [RHEL-127171]
- ceph: fix client race condition where r_parent becomes stale before sending message (Alex Markuze) [RHEL-120226]
- ceph: fix client race condition validating r_parent before applying state (Alex Markuze) [RHEL-120226]
- blk-mq: setup queue ->tag_set before initializing hctx (Ming Lei) [RHEL-30744]
- blk-mq: add helper for checking if one CPU is mapped to specified hctx (Ming Lei) [RHEL-30744]
- blk-mq: don't schedule block kworker on isolated CPUs (Ming Lei) [RHEL-30744]
- sched/isolation: add cpu_is_isolated() API (Ming Lei) [RHEL-30744]

* Sat Dec 13 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.90.1.rt7.431.el8_10]
- NFSv4: xattr handlers should check for absent nfs filehandles (Scott Mayhew) [RHEL-129945]

* Mon Dec 01 2025 Alexandra Hájková <ahajkova@redhat.com> [4.18.0-553.89.1.rt7.430.el8_10]
- mm: memcg: use READ_ONCE()/WRITE_ONCE() to access stock->cached (Radostin Stoyanov) [RHEL-122774]
- mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required() (Radostin Stoyanov) [RHEL-122774] {CVE-2023-53401}
- mm/memcg: revert ("mm/memcg: optimize user context object stock access") (Radostin Stoyanov) [RHEL-122774] {CVE-2023-53401}
- gfs2: Add proper lockspace locking (Andreas Gruenbacher) [RHEL-88660]
- gfs2: do_xmote cleanup (Andreas Gruenbacher) [RHEL-88660]

* Thu Nov 27 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.88.1.rt7.429.el8_10]
- scsi: s390: zfcp: Ensure synchronous unit_add (Mete Durlu) [RHEL-129199]
- RDMA/rxe: Fix incomplete state save in rxe_requester (Kamal Heib) [RHEL-124700] {CVE-2023-53539}
- RDMA/rxe: Fix mr->map double free (CKI Backport Bot) [RHEL-123715] {CVE-2022-50543}

* Tue Nov 25 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.87.1.rt7.428.el8_10]
- tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request(). (Antoine Tenart) [RHEL-120664]
- tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect(). (Antoine Tenart) [RHEL-120664] {CVE-2025-39955}
- mm/memory-failure: fix VM_BUG_ON_PAGE(PagePoisoned(page)) when unpoison memory (Audra Mitchell) [RHEL-117059] {CVE-2025-39883}

* Thu Nov 20 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [4.18.0-553.86.1.rt7.427.el8_10]
- smb: client: fix race with concurrent opens in rename(2) (Paulo Alcantara) [RHEL-118237] {CVE-2025-39825}
- smb: client: fix race with concurrent opens in unlink(2) (Paulo Alcantara) [RHEL-118237]
- e1000e: fix heap overflow in e1000_set_eeprom (Corinna Vinschen) [RHEL-123105] {CVE-2025-39898}
- nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm() (CKI Backport Bot) [RHEL-125595] {CVE-2025-38724}
- nbd: fix incomplete validation of ioctl arg (CKI Backport Bot) [RHEL-122965] {CVE-2023-53513}
- arch/powerpc: commandline option to enable P11 support (Mamatha Inamdar) [RHEL-107921]
- perf/pmu-events/powerpc: Update json mapfile with Power11 PVR (Mamatha Inamdar) [RHEL-107921]
- perf vendor events powerpc: Add PVN for HX-C2000 CPU with Power8 Architecture (Mamatha Inamdar) [RHEL-107921]
- tools/perf/arch/powerpc: Fix the CPU ID const char* value by adding 0x prefix (Mamatha Inamdar) [RHEL-107921]
- powerpc/perf: Power11 Performance Monitoring support (Mamatha Inamdar) [RHEL-107921]
- powerpc/perf: Add __init attribute to eligible functions (Mamatha Inamdar) [RHEL-107921]
- powerpc: Add Power11 architected and raw mode (Mamatha Inamdar) [RHEL-107921]

* Thu Nov 13 2025 Alexandra Hájková <ahajkova@redhat.com> [4.18.0-553.85.1.rt7.426.el8_10]
- i40e: add mask to apply valid bits for itr_idx (Michal Schmidt) [RHEL-123799]
- i40e: add max boundary check for VF filters (Michal Schmidt) [RHEL-123799] {CVE-2025-39968}
- i40e: fix validation of VF state in get resources (Michal Schmidt) [RHEL-123799] {CVE-2025-39969}
- i40e: fix input validation logic for action_meta (Michal Schmidt) [RHEL-123799] {CVE-2025-39970}
- i40e: Fix filter input checks to prevent config with invalid values (Michal Schmidt) [RHEL-123799]
- i40e: fix idx validation in config queues msg (Michal Schmidt) [RHEL-123799] {CVE-2025-39971}
- i40e: fix: remove needless retries of NVM update (Michal Schmidt) [RHEL-123799]
- i40e: remove i40e_status (Michal Schmidt) [RHEL-123799]
- i40e: fix idx validation in i40e_validate_queue_map (Michal Schmidt) [RHEL-123799] {CVE-2025-39972}
- i40e: add validation for ring_len param (Michal Schmidt) [RHEL-123799] {CVE-2025-39973}
- i40e: increase max descriptors for XL710 (Michal Schmidt) [RHEL-123799]
- drm/nouveau: Don't create connectors that aren't in disp.conn_mask (Lyude Paul) [RHEL-22122]
- NFS: Fix a race when updating an existing write (Olga Kornievskaia) [RHEL-113849] {CVE-2025-39697}
- nfs: fold nfs_page_group_lock_subrequests into nfs_lock_and_join_requests (Olga Kornievskaia) [RHEL-113849] {CVE-2025-39697}
- The rpminspect.yaml emptyrpm list needs to be expanded (Alexandra Hájková)