From d8cf30fe51a7766ad4018da8a901a4b98e165b8e Mon Sep 17 00:00:00 2001
From: Peridot Bot <rockyautomation@rockylinux.org>
Date: Mon, 24 Mar 2025 19:46:41 +0000
Subject: [PATCH] import kernel-6.12.0-67.el10

---
 .kernel.metadata         |  6 +++---
 SOURCES/Makefile.rhelver |  2 +-
 SOURCES/kernel.changelog | 17 +++++++++++++++++
 SPECS/kernel.spec        | 26 +++++++++++++++++++++-----
 4 files changed, 42 insertions(+), 9 deletions(-)

diff --git a/.kernel.metadata b/.kernel.metadata
index e3d4d37..a458c56 100644
--- a/.kernel.metadata
+++ b/.kernel.metadata
@@ -1,3 +1,3 @@
-a9b1ef96d6425fb09819e68e7ea017f3885395db628e00c7b479e16a1a4b82ca SOURCES/kernel-abi-stablelists-6.12.0-66.el10.tar.xz
-b6876512800e2b776d02c7fde5add55a244099303fe394077ba6a99c1f9d3065 SOURCES/kernel-kabi-dw-6.12.0-66.el10.tar.xz
-2ce49e3d26ff8894f2e2a70b236fc8ee167b84b9050ed9d02f9c5cf2a73da834 SOURCES/linux-6.12.0-66.el10.tar.xz
+024b4b4c57413c7d2ed11e51f7f96a19f7dd1061f8417059ba39b2a1daed3803 SOURCES/kernel-abi-stablelists-6.12.0-67.el10.tar.xz
+b6876512800e2b776d02c7fde5add55a244099303fe394077ba6a99c1f9d3065 SOURCES/kernel-kabi-dw-6.12.0-67.el10.tar.xz
+7e2c70ec11de34ababda7b3ef2c536215ffd395782081d6df67b9e8e4126b6be SOURCES/linux-6.12.0-67.el10.tar.xz
diff --git a/SOURCES/Makefile.rhelver b/SOURCES/Makefile.rhelver
index bf44d99..11b3068 100644
--- a/SOURCES/Makefile.rhelver
+++ b/SOURCES/Makefile.rhelver
@@ -12,7 +12,7 @@ RHEL_MINOR = 1
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 66
+RHEL_RELEASE = 67
 
 #
 # RHEL_REBASE_NUM
diff --git a/SOURCES/kernel.changelog b/SOURCES/kernel.changelog
index c195039..784aa9d 100644
--- a/SOURCES/kernel.changelog
+++ b/SOURCES/kernel.changelog
@@ -1,3 +1,20 @@
+* Fri Mar 21 2025 Julio Faracco <jfaracco@redhat.com> [6.12.0-67.el10]
+- Bluetooth: btbcm: Fix NULL deref in btbcm_get_board_name() (CKI Backport Bot) [RHEL-81378] {CVE-2024-57988}
+- Bluetooth: MGMT: Fix slab-use-after-free Read in mgmt_remove_adv_monitor_sync (CKI Backport Bot) [RHEL-81510] {CVE-2024-58013}
+- ipvlan: Fix use-after-free in ipvlan_get_iflink(). (CKI Backport Bot) [RHEL-77888] {CVE-2025-21652}
+- usbnet: ipheth: document scope of NCM implementation (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: fix DPE OoB read (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: break up NCM header size computation (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: refactor NCM datagram loop (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: use static NDP16 location in URB (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: check that DPE points past NCM header (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: fix possible overflow in DPE length check (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- workqueue: Put the pwq after detaching the rescuer from the pool (CKI Backport Bot) [RHEL-81475] {CVE-2025-21786}
+- netfilter: nf_tables: reject mismatching sum of field_len with set key length (CKI Backport Bot) [RHEL-82492] {CVE-2025-21826}
+- pktgen: Avoid out-of-bounds access in get_imix_entries (CKI Backport Bot) [RHEL-77232] {CVE-2025-21680}
+- Bluetooth: btrtl: check for NULL in btrtl_setup_realtek() (CKI Backport Bot) [RHEL-81271] {CVE-2024-57987}
+Resolves: RHEL-77232, RHEL-77888, RHEL-81271, RHEL-81349, RHEL-81378, RHEL-81435, RHEL-81475, RHEL-81510, RHEL-81565, RHEL-82492
+
 * Wed Mar 19 2025 Julio Faracco <jfaracco@redhat.com> [6.12.0-66.el10]
 - crypto: tegra - do not transfer req when tegra init fails (Herbert Xu) [RHEL-82479] {CVE-2024-58075}
 - NFSD: fix hang in nfsd4_shutdown_callback (Olga Kornievskaia) [RHEL-81295] {CVE-2025-21795}
diff --git a/SPECS/kernel.spec b/SPECS/kernel.spec
index be07977..f803f5b 100644
--- a/SPECS/kernel.spec
+++ b/SPECS/kernel.spec
@@ -162,15 +162,15 @@ Summary: The Linux kernel
 %define specrpmversion 6.12.0
 %define specversion 6.12.0
 %define patchversion 6.12
-%define pkgrelease 66
+%define pkgrelease 67
 %define kversion 6
-%define tarfile_release 6.12.0-66.el10
+%define tarfile_release 6.12.0-67.el10
 # This is needed to do merge window version magic
 %define patchlevel 12
 # This allows pkg_release to have configurable %%{?dist} tag
-%define specrelease 66%{?buildid}%{?dist}
+%define specrelease 67%{?buildid}%{?dist}
 # This defines the kabi tarball version
-%define kabiversion 6.12.0-66.el10
+%define kabiversion 6.12.0-67.el10
 
 # If this variable is set to 1, a bpf selftests build failure will cause a
 # fatal kernel package build error
@@ -4314,11 +4314,27 @@ fi\
 #
 #
 %changelog
-* Thu Mar 20 2025 Release Engineering <releng@rockylinux.org> - 6.12.0-66
+* Mon Mar 24 2025 Release Engineering <releng@rockylinux.org> - 6.12.0-67
 - Porting to Rocky Linux 10, debranding and Rocky Linux branding
 - Add partial riscv64 support for build root
 - Provide basic VisionFive 2 support
 
+* Fri Mar 21 2025 Julio Faracco <jfaracco@redhat.com> [6.12.0-67.el10]
+- Bluetooth: btbcm: Fix NULL deref in btbcm_get_board_name() (CKI Backport Bot) [RHEL-81378] {CVE-2024-57988}
+- Bluetooth: MGMT: Fix slab-use-after-free Read in mgmt_remove_adv_monitor_sync (CKI Backport Bot) [RHEL-81510] {CVE-2024-58013}
+- ipvlan: Fix use-after-free in ipvlan_get_iflink(). (CKI Backport Bot) [RHEL-77888] {CVE-2025-21652}
+- usbnet: ipheth: document scope of NCM implementation (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: fix DPE OoB read (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: break up NCM header size computation (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: refactor NCM datagram loop (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: use static NDP16 location in URB (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: check that DPE points past NCM header (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: fix possible overflow in DPE length check (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- workqueue: Put the pwq after detaching the rescuer from the pool (CKI Backport Bot) [RHEL-81475] {CVE-2025-21786}
+- netfilter: nf_tables: reject mismatching sum of field_len with set key length (CKI Backport Bot) [RHEL-82492] {CVE-2025-21826}
+- pktgen: Avoid out-of-bounds access in get_imix_entries (CKI Backport Bot) [RHEL-77232] {CVE-2025-21680}
+- Bluetooth: btrtl: check for NULL in btrtl_setup_realtek() (CKI Backport Bot) [RHEL-81271] {CVE-2024-57987}
+
 * Wed Mar 19 2025 Julio Faracco <jfaracco@redhat.com> [6.12.0-66.el10]
 - crypto: tegra - do not transfer req when tegra init fails (Herbert Xu) [RHEL-82479] {CVE-2024-58075}
 - NFSD: fix hang in nfsd4_shutdown_callback (Olga Kornievskaia) [RHEL-81295] {CVE-2025-21795}
-- 
GitLab