import kernel-6.12.0-67.el10

d8cf30fe · Rocky Automation · a3a2c843 · d8cf30fe · d8cf30fe · d8cf30fe
Commit d8cf30fe authored 3 weeks ago by Rocky Automation
--- a/.kernel.metadata
+++ b/.kernel.metadata
-a9b1ef96d6425fb09819e68e7ea017f3885395db628e00c7b479e16a1a4b82ca SOURCES/kernel-abi-stablelists-6.12.0-66.el10.tar.xz
-b6876512800e2b776d02c7fde5add55a244099303fe394077ba6a99c1f9d3065 SOURCES/kernel-kabi-dw-6.12.0-66.el10.tar.xz
-2ce49e3d26ff8894f2e2a70b236fc8ee167b84b9050ed9d02f9c5cf2a73da834 SOURCES/linux-6.12.0-66.el10.tar.xz
+024b4b4c57413c7d2ed11e51f7f96a19f7dd1061f8417059ba39b2a1daed3803 SOURCES/kernel-abi-stablelists-6.12.0-67.el10.tar.xz
+b6876512800e2b776d02c7fde5add55a244099303fe394077ba6a99c1f9d3065 SOURCES/kernel-kabi-dw-6.12.0-67.el10.tar.xz
+7e2c70ec11de34ababda7b3ef2c536215ffd395782081d6df67b9e8e4126b6be SOURCES/linux-6.12.0-67.el10.tar.xz
--- a/SOURCES/Makefile.rhelver
+++ b/SOURCES/Makefile.rhelver
@@ -12,7 +12,7 @@ RHEL_MINOR = 1
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 66
+RHEL_RELEASE = 67

 #
 # RHEL_REBASE_NUM

--- a/SOURCES/kernel.changelog
+++ b/SOURCES/kernel.changelog
+* Fri Mar 21 2025 Julio Faracco <jfaracco@redhat.com> [6.12.0-67.el10]
+- Bluetooth: btbcm: Fix NULL deref in btbcm_get_board_name() (CKI Backport Bot) [RHEL-81378] {CVE-2024-57988}
+- Bluetooth: MGMT: Fix slab-use-after-free Read in mgmt_remove_adv_monitor_sync (CKI Backport Bot) [RHEL-81510] {CVE-2024-58013}
+- ipvlan: Fix use-after-free in ipvlan_get_iflink(). (CKI Backport Bot) [RHEL-77888] {CVE-2025-21652}
+- usbnet: ipheth: document scope of NCM implementation (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: fix DPE OoB read (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: break up NCM header size computation (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: refactor NCM datagram loop (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: use static NDP16 location in URB (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: check that DPE points past NCM header (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: fix possible overflow in DPE length check (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- workqueue: Put the pwq after detaching the rescuer from the pool (CKI Backport Bot) [RHEL-81475] {CVE-2025-21786}
+- netfilter: nf_tables: reject mismatching sum of field_len with set key length (CKI Backport Bot) [RHEL-82492] {CVE-2025-21826}
+- pktgen: Avoid out-of-bounds access in get_imix_entries (CKI Backport Bot) [RHEL-77232] {CVE-2025-21680}
+- Bluetooth: btrtl: check for NULL in btrtl_setup_realtek() (CKI Backport Bot) [RHEL-81271] {CVE-2024-57987}
+Resolves: RHEL-77232, RHEL-77888, RHEL-81271, RHEL-81349, RHEL-81378, RHEL-81435, RHEL-81475, RHEL-81510, RHEL-81565, RHEL-82492
+
 * Wed Mar 19 2025 Julio Faracco <jfaracco@redhat.com> [6.12.0-66.el10]
 - crypto: tegra - do not transfer req when tegra init fails (Herbert Xu) [RHEL-82479] {CVE-2024-58075}
 - NFSD: fix hang in nfsd4_shutdown_callback (Olga Kornievskaia) [RHEL-81295] {CVE-2025-21795}

--- a/SPECS/kernel.spec
+++ b/SPECS/kernel.spec
@@ -162,15 +162,15 @@ Summary: The Linux kernel
 %define specrpmversion 6.12.0
 %define specversion 6.12.0
 %define patchversion 6.12
-%define pkgrelease 66
+%define pkgrelease 67
 %define kversion 6
-%define tarfile_release 6.12.0-66.el10
+%define tarfile_release 6.12.0-67.el10
 # This is needed to do merge window version magic
 %define patchlevel 12
 # This allows pkg_release to have configurable %%{?dist} tag
-%define specrelease 66%{?buildid}%{?dist}
+%define specrelease 67%{?buildid}%{?dist}
 # This defines the kabi tarball version
-%define kabiversion 6.12.0-66.el10
+%define kabiversion 6.12.0-67.el10

 # If this variable is set to 1, a bpf selftests build failure will cause a
 # fatal kernel package build error
@@ -4314,11 +4314,27 @@ fi\
 #
 #
 %changelog
-* Thu Mar 20 2025 Release Engineering <releng@rockylinux.org> - 6.12.0-66
+* Mon Mar 24 2025 Release Engineering <releng@rockylinux.org> - 6.12.0-67
 - Porting to Rocky Linux 10, debranding and Rocky Linux branding
 - Add partial riscv64 support for build root
 - Provide basic VisionFive 2 support

+* Fri Mar 21 2025 Julio Faracco <jfaracco@redhat.com> [6.12.0-67.el10]
+- Bluetooth: btbcm: Fix NULL deref in btbcm_get_board_name() (CKI Backport Bot) [RHEL-81378] {CVE-2024-57988}
+- Bluetooth: MGMT: Fix slab-use-after-free Read in mgmt_remove_adv_monitor_sync (CKI Backport Bot) [RHEL-81510] {CVE-2024-58013}
+- ipvlan: Fix use-after-free in ipvlan_get_iflink(). (CKI Backport Bot) [RHEL-77888] {CVE-2025-21652}
+- usbnet: ipheth: document scope of NCM implementation (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: fix DPE OoB read (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: break up NCM header size computation (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: refactor NCM datagram loop (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: use static NDP16 location in URB (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: check that DPE points past NCM header (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- usbnet: ipheth: fix possible overflow in DPE length check (Jose Ignacio Tornos Martinez) [RHEL-81349 RHEL-81435 RHEL-81565] {CVE-2025-21741 CVE-2025-21743 CVE-2025-21742}
+- workqueue: Put the pwq after detaching the rescuer from the pool (CKI Backport Bot) [RHEL-81475] {CVE-2025-21786}
+- netfilter: nf_tables: reject mismatching sum of field_len with set key length (CKI Backport Bot) [RHEL-82492] {CVE-2025-21826}
+- pktgen: Avoid out-of-bounds access in get_imix_entries (CKI Backport Bot) [RHEL-77232] {CVE-2025-21680}
+- Bluetooth: btrtl: check for NULL in btrtl_setup_realtek() (CKI Backport Bot) [RHEL-81271] {CVE-2024-57987}
+
 * Wed Mar 19 2025 Julio Faracco <jfaracco@redhat.com> [6.12.0-66.el10]
 - crypto: tegra - do not transfer req when tegra init fails (Herbert Xu) [RHEL-82479] {CVE-2024-58075}
 - NFSD: fix hang in nfsd4_shutdown_callback (Olga Kornievskaia) [RHEL-81295] {CVE-2025-21795}