Sisyphus repositório
Última atualização: 14 agosto 2022 | SRPMs: 17596 | Visitas: 24777942
en ru br
ALT Linux repositórios

Group :: Sistema/Kernel e hardware
RPM: kernel-image-centos

 Main   Changelog   Spec   Patches   Sources   Download   Gear   Bugs e FR  Repocop 

9 agosto 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-144.el9 (fixes: CVE-2022-1184):
     + ena: update driver to v5.18
     + ext4: fix use-after-free and memory errors when working with a corrupted directory
     + Fix outstanding device-mapper bugs from upstream 5.19 and 6.0
     + ipmi: When handling send message responses, don't process the message
     + NFS: Fix initialisation of nfs_client cl_flags field
     + opp: fix broken DT boot on Nvidia Jetson
     + scsi: qla2xxx: Fix imbalance vha->vref_count
     + smartpqi updates
     + xfs: Ensure important RHEL8 fixes are present in RHEL9

8 agosto 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-143.el9 (fixes: CVE-2022-23816, CVE-2022-23825, CVE-2022-29900, CVE-2022-29901):
     + Documentation: add a description for net.core.high_order_alloc_disable
     + net: ping6: Fix memleak in ipv6_renew_options().
     + rebase the input and HID stack in RHEL 9.1
     + [RHEL 9.1.0 BZ 2015209] A couple dma fixes
     + [RHEL9.1 BZ2100482] Revert dmaengine: idxd: Separate user and kernel pasid enabling
     + sched, cpuset: Fix dl_cpu_busy() panic due to empty cs->cpus_allowed
     + sit: do not call ipip6_dev_free() from sit_init_net()
     + x86: Fix RETBleed Vulnerabilities

3 agosto 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-141.el9:
     + ACPI: VIOT: Fix ACS setup
     + Documentation: Add an explanation of NFSv4 client identifiers
     + Documentation: filesystems: proc: update meminfo section
     + iommu/vt-d:  A couple of late landing fixes
     + mm: make slab and vmalloc allocators __GFP_NOLOCKDEP aware
     + mm/munlock: Fix sleeping function called from invalid context bug
     + powercap: intel_rapl: add support for ALDERLAKE_N
     + ppc64le: bpf: bpf_perf_event.h field 'regs' has incomplete type (perf:)
     + scsi: qla2xxx: Fix excessive I/O error messages by default
     + Update ACPI to match Linux v5.18

3 agosto 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-140.el9:
     + ibmvnic: Properly dispose of all skbs during a failover.
     + Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together
     + perf stat report segfaults
     + powerpc/fadump: save CPU reg data in vmcore when PHYP terminates LPAR

1 agosto 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-139.el9:
     + cgroup: Miscellaneous bug fixes and enhancements
     + drm/mgag200: Add FB damage clips and gamma support
     + Fix kvm/selftests/rseq_test failure
     + net: mld: fix reference count leak in mld_{query | report}_work()
     + RDMA: Bug fixes from v5.19
     + update the non-x86 portions of drivers/platform to v5.18
     + vsock: backport latest commits for RHEL-9-1

1 agosto 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-138.el9:
     + Add support for MaxLinear NICs (GPY115/21x/24x driver)
     + blk-mq: don't create hctx debugfs dir until q->debugfs_dir is created
     + block: Fix handling of offline queues in blk_mq_alloc_request_hctx()
     + bonding: bugfix series from v5.19
     + Bring MD kernel up to date
     + CNB: net: Don't include filter.h from net/sock.h
     + crypto: qat: Update QAT drivers upto v5.19
     + Documentation: fix udp_wmem_min in ip-sysctl.rst
     + e1000e: Driver update for RHEL9.1
     + Enable MediaTek BT Support for RHEL-9 and bug fixes
     + fscache: Avoid ASSERTCMP if two threads race into fscache_disable_cookie
     + netdevsim: don't overwrite read only ethtool parms
     + nvme: fix RCU hole that allowed for endless looping in multipath round robin
     + redhat/configs/common: Enable CONFIG_LZ4_COMPRESS
     + redhat: workaround CKI cross compilation for scripts
     + RHEL-9 nfsd server post_wcc fixes - clients see increased revalidations
     + sfc: fix efx_separate_tx_channels=y
     + tools/testing/nvdimm: Fix security_init() symbol collision
     + Update intel_idle with SPR and ADL support
     + Update USB and Thunderbolt to v5.19-rc5
     + vdpa/mlx5: Fix ethtool can not set combined numbers in vm when the vcpu < vqs
     + XDP/Networking BPF: 9.1 P2 backports from upstream

28 julho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-136.el9:
     + arm64: update GIC interrupt controller driver to v5.18 level
     + bpftool: Enable libbpf's strict mode by default
     + drivers/base: fix userspace break from using bin_attributes for cpumap and cpulist
     + ipv4: backport upstream fixes
     + nfsd: destroy percpu stats counters after reply cache shutdown
     + x86/kexec: fix memory leak of elf header buffer
     + xfs: fallocate doesn't drop privileges or capabilities

22 julho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-135.el9 (fixes: CVE-2022-34918):
     + ACPI, PCI: Power Management fixes
     + Additional SCSI updates for 9.1
     + audit: backport from upstream v5.18 to v5.19-rc3
     + block drivers: fix build warning on not checking add_disk*
     + IPv6: 9.1 P2 backports from upstream
     + kselftest: backport from upstream P2
     + Make signature verification FIPS compliant
     + mptcp: backports for 9.1p2
     + net: backport upstream fixes for IP tunnels
     + netfilter: 9.1 P2 backports
     + netfilter: nf_tables: stricter validation of element data
     + net: openvswitch: fix misuse of the cached connection on tuple changes
     + net/other: backports for 9.1 p2
     + net/sched: backports for 9.1 p2
     + redhat: fix kernel_variant_package option definition
     + tcp: fix possible divide-by-zero
     + tipc: backports from upstream, 2nd phase
     + tipc: move bc link creation back to tipc_node_create

20 julho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-133.el9 (fixes: CVE-2022-0854, CVE-2022-21123, CVE-2022-21125, CVE-2022-21166, CVE-2022-28893):
     + arm64: Update core arch code to upstream v5.18
     + dlm: fix missing lkb refcount handling
     + fix swiotlb information leak with DMA_FROM_DEVICE
     + igb: Driver Update
     + kdump: round up the total memory size to 128M for crashkernel reservation
     + lockd: set fl_owner when unlocking files
     + lpfc cs9 (rhel9.1) update to
     + nfs: reexport documentation
     + ovs: backports for 9.1 P2
     + remoteproc: updates for build issues
     + scsi: target: pscsi: Set SCF_TREAT_READ_AS_NORMAL flag only if there is valid data
     + SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()
     + update cpuidle to v5.18
     + Update drivers/base to v5.18
     + x86/speculation/mmio: Fix Processor MMIO Stale Data Vulnerabilities

15 julho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-130.el9:
     + CNB: bpf: Let bpf_warn_invalid_xdp_action() report more info
     + mm: folio backports part 2
     + redhat: make kernel-zfcpdump-core to not provide kernel-core/kernel
     + scsi: csiostor: Add module softdep on cxgb4
     + scsi: iscsi: iSCSI transport bugfixes

15 julho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-129.el9:
     + DRM 5.18 backport
     + ext4,jbd2: Backport fixes from 5.18
     + iRDMA: Driver update to v5.19
     + Make NFSv4 OPEN(CREATE) less brittle
     + net/core: backport fixes from upstream for 9.1 P2
     + redhat/configs: enable CONFIG_SAMPLE_VFIO_MDEV_MTTY
     + spec: Keep .BTF section in modules
     + virtiofs: Add support for SELinux

12 julho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-128.el9:
     + block: kill warning of 'Directory XXXXX with parent 'block' already present!'
     + CNB: gro: get out of core files
     + sched: Fix balance_push() vs __sched_setscheduler()
     + selftests, xsk: Fix bpf_res cleanup test

10 julho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-127.el9:
     + aarch64: Enable NVIDIA Jetson Xavier SoCs
     + fs: dlm: filter messages case to avoid kernel crash
     + hyperv: Add support for AMD SEV-SNP for Azure/Hyper-V
     + igbvf: Driver Update
     + perf: Support Cstate PMU on SPR
     + powercap: intel_rapl: add support for RaptorLake
     + r8169: driver update
     + x86/sme: fix boot failure when memory encryption is enabled

8 julho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-126.el9:
     + cxl: Update CXL code from upstream 5.17.
     + kvm/arm64 rebase for RHEL9.1
     + mm/page_alloc: always attempt to allocate at least one page during bulk allocation

7 julho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-125.el9:
     + bnxt: Driver update for RHEL9.1
     + CIFS, backport two patches that fixes issues in smb2_compound_op
     + gfs2: Make sure FITRIM minlen is rounded up to fs block size
     + i40e: Driver Update
     + iavf: Driver update to upstream 5.18
     + ice: Driver update to upstream 5.18
     + time: Handle negative seconds correctly in timespec64_to_ns()

5 julho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-124.el9:
     + ceph: wait on async create before checking caps for syncfs
     + CNB: lib: bitmap: Introduce node-aware alloc API
     + dm: sync with upstream 5.19
     + scsi: ibmvfc: Allocate/free queue resource only during probe/remove

1 julho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-123.el9:
     + exec: Force single empty string when argv is empty
     + net: backport netdevice and netns refcount tracking and enable them for debug kernels
     + nfs: fix broken handling of the softreval mount option
     + powerpc: Enable execve syscall exit tracepoint
     + rcu: Fix rcu_tasks_verify_self_tests failure
     + scsi: ibmvfc: Store vhost pointer during subcrq allocation

30 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-122.el9:
     + Add MEI support for ADL-N
     + Backport fixes for ucounts
     + bonding: ARP monitor spams NETDEV_NOTIFY_PEERS notifiers
     + exec: Force single empty string when argv is empty
     + Intel SDSi: fix issue reading state certificate
     + iwlwifi: fix use-after-free
     + mptcp: fix checksum byte order
     + net: hyper-v: NetVSC driver updates for 9.1
     + [PATCHv3 00/28] support reserving crashkernel above 4G on arm64 kdump
     + s390/crypto: add SIMD implementation for ChaCha20

29 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-121.el9:
     + arm64: Update core arch code to upstream v5.16
     + crypto: fips - make proc files report fips module name and version
     + fuse: allow sharing existing sb
     + gfs2: File corruption with large writes when memory is tight
     + kbuild: Enable -std=gnu11
     + redhat/configs: Set CONFIG_VIRTIO_IOMMU on x86_64
     + redhat/kernel.spec.template: fix standalone tools build

27 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-120.el9 (fixes: CVE-2022-1998, CVE-2022-2078):
     + block: update with 5.18 for rhel 9.1
     + fanotify: Fix stale file descriptor in copy_event_to_user()
     + netfilter: nf_tables: sanitize nft_set_desc_concat_parse()
     + ntb: update from upstream v5.17
     + redhat: spec: trigger dracut when modules are installed separately
     + [s390] s390/zcrypt: Add admask to zcdn
     + scsi: mpi3mr: Add bsg device support
     + tcp: Don't acquire inet_listen_hashbucket::lock with disabled BH.
     + vmxnet3: Update network driver for RHEL 9.1

24 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-119.el9:
     + mt76: mt7921: Fix the error handling path of mt7921_pci_probe()
     + powerpc/pseries:  Added support for differentiated memory equivalent to ACPI special purpose memory (SPM) (SCM/pmem)
     + revert bus: Make remove callback return void
     + [s390] drivers/s390/char: Add Ultravisor io device
     + [s390] [IBM 9.1 FEAT] Upgrade the SMC driver to latest from upstream, e.g. kernel 5.18
     + tg3: Driver update for RHEL9.1
     + wireless: stack & drivers update to v5.18

23 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-118.el9:
     + ixgbe: Driver update for RHEL9.1
     + sfc: update to upstream v5.18
     + SGX updates from v5.17

22 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-117.el9:
     + Enable verbose error logging support for nvme
     + ionic: update driver to v5.18
     + Make DMAR_UNITS_SUPPORTED configurable
     + powerpc/rtas: rtas_busy_delay() improvements
     + [s390] zcrypt DD: Exploitation Support of new IBM Z Crypto Hardware - kernel part
     + scripts/ use exit instead of return at the top level
     + Update kernel's PCI subsystem to v5.18
     + XDP and networking eBPF rebase to v5.16
     + xfs: validate inode fork size against fork format

21 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-116.el9:
     + CNB: Update TC subsystem to upstream v5.18
     + hv: vmbus: Driver updates for 9.1
     + ixgbevf: Driver update for RHEL9.1
     + [RHEL9.1] IOMMU/DMA Updates
     + video: fbdev: hyperv_fb: Allow resolutions with size > 64 MB for Gen1
     + x86/fpu: KVM: Set the base guest FPU uABI size to sizeof(struct kvm_xsave)

17 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-114.el9 (fixes: CVE-2022-1729):
     + block: ignore RWF_HIPRI hint for sync dio
     + lpfc cs9 (rhel9.1) update
     + perf: Fix sys_perf_event_open() race against self
     + redhat/configs: Drop outdated CRYPTO_ECDH and unify CRYPTO_USER configs
     + [s390] Upgrade the zfcp driver to latest from upstream, e.g. kernel 5.18
     + Update ext4 and jbd2 to upstream v5.17

16 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-113.el9:
     + bpf update v5.16
     + netfilter: nat: really support inet nat without l3 address
     + netfilter: nf_tables: double hook unregistration in netns path
     + powerpc/rtas: Keep MSR[RI] set when calling RTAS
     + [s390] - s390/dasd: Fix read inconsistency and failure for ESE devices
     + Update ACPI subsystem to match Linux 5.17
     + Watchdog driver  (sp5100_tco) support for AMD Family 17 and Family 19 CPUs

15 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-112.el9:
     + iio: updates
     + net: mana: MANA driver updates for RHEL 9.1
     + PCI: Hyper-V: PCI driver updates for RHEL 9.1
     + [s390] s390/dasd: Fix data corruption for ESE devices
     + VMCI: Update driver and enable ARM64 build

14 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-111.el9 (fixes: CVE-2022-1966):
     + Add pinctrl support for ADL-N
     + block, loop: support partitions without scanning
     + [Intel 9.1 FEAT] [RPL-P] perf: PerfMon support
     + ipv4: do not use per netns icmp sockets
     + netfilter: nf_tables: disallow non-stateful expression in sets earlier
     + remoteproc: updates
     + scsi: fnic: Finish scsi_cmnd before dropping the spinlock
     + turbostat: fix PC6 displaying on some systems

13 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-110.el9:
     + ACPI: sysfs: Fix BERT error region memory mapping
     + CNB: net: disable NET_RX_BUSY_POLL on PREEMPT_RT
     + Hyper-V: x86: x86_64 Updates for RHEL 9.1
     + KVM: x86: Rebase to v5.18
     + topology: make core_mask include at least cluster_siblings

10 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-109.el9:
     + Backport latest fixes from upstream s390x KVM for the RHEL 9.1 kernel
     + Brush up s390x/zfcpdump/ configs
     + CNB: net: consolidate neif_rx() and make it callable from any context
     + mptcp: better window sharing
     + ovs: 9.1 P1 backports
     + powerpc: Support for reporting NVDIMM performance stats (HMS/SCM/pmem)
     + redhat/configs: enable interconnect for NXP i.MX 8M
     + [s390] s390/cpumf: add new extended counter set for IBM z16
     + [s390] s390/perf: obtain sie_block from the right address
     + x86/split_lock: Enable the split lock feature on Raptor Lake

9 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-108.el9:
     + ahci: Add a generic 'controller2' RAID id
     + bnx2x: fix napi API usage sequence
     + CNB: net: add netif_set_real_num_queues() for device reconfig
     + interconnect: updates
     + net/af_packet: add VLAN support for AF_PACKET SOCK_RAW GSO
     + net: openvswitch: fix leak of nested actions
     + NFSv4: Fix free of uninitialized nfs4_label on referral lookup.
     + regulator: updates
     + rpmsg: updates
     + Scheduler late arriving fixes for 9.1
     + scsi: scsi_dh_alua: Properly handle the ALUA transitioning state
     + selftests/bpf: Fix btf_dump test under new clang
     + spmi: updates
     + vdpa: mlx5: prevent cvq work from hogging CPU

7 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-106.el9 (fixes: CVE-2022-24448):
     + clk: qcom: rpmhcc: add sc8280xp support to the RPMh clock controller
     + Documentation: add description for net.core.gro_normal_batch
     + Documentation/sysctl: document max_rcu_stall_to_panic
     + drivers/char: fix unused variable warning in mem.c
     + Fixes for nfs_atomic_open()
     + mm, compaction: fast_find_migrateblock() should return pfn in the target zone
     + PTP: backport fixes from upstream
     + [RHEL 9.1.0] IDXD fixes
     + [s390] Upgrade the qeth driver to latest from upstream

3 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-105.el9:
     + Add Alderlake and Raptorlake CPU model numbers
     + Documentation/sysctl: document page_lock_unfairness
     + iommu/virtio: Support bypass domains
     + NFSv4.2: Fix up an invalid combination of memory allocation flags
     + Update bluetooth to upstream 5.17-rc5
     + Update thermal/int340x for RPL
     + XDP and networking eBPF rebase to v5.15

2 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-104.el9:
     + bonding: driver update for 9.1
     + mptcp: fix subflow accounting on close
     + redhat: enable CONFIG_NET_ACT_CTINFO (as a module)
     + update qedi driver to latest upstream

1 junho 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-103.el9:
     + dlm: fix plock invalid read
     + ipc/mqueue: use get_tree_nodev() in mqueue_get_tree()
     + MMIO support for SMBus and ASF controller in AMD APU/CPU
     + mpt3sas: driver update
     + powerpc/pseries/vas: Use QoS credits from the userspace
     + powerpc: support for perf sampling tests (PMU/performance counters/perf) [FEAT]
     + s390/cio: verify the driver availability for path_event call
     + [s390] RDMA/mlx5: Fix number of allocated XLT entries
     + [s390] s390/hypfs: include z/VM guests with access control group set
     + [s390] s390/tape: fix timer initialization in tape_std_assign()
     + scsi: mpi3mr: driver update
     + Sync osnoise/timerlat tracers with v5.17 upstream
     + tcp: stable backports for rhel 9.1 phase 1
     + vfs: make sync_filesystem return errors from ->sync_fs

31 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-102.el9:
     + livepatch: rebase to linux v5.17
     + perf: sync with upstream v5.17
     + thunderx nic: mark device as unmaintained
     + xfs: Fix the free logic of state in xfs_attr_node_hasname

28 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-101.el9:
     + mm: Backport upstream mm commits for kernel-rt
     + redhat: Exclude cpufreq.h from kernel-headers
     + tools: Fix radix-tree test build failure

26 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-100.el9:
     + bpf: update to v5.15
     + KVM: Enable storage key checking for intercepted instruction
     + PCI: vmd: IRQ domain assignment to sub devices

25 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-99.el9:
     + ceph: backport mainline changes up to v5.18 for RHEL 9.1
     + [EHL] Intel Sensor Hub (ISH): EClite driver enabling
     + Enable virtio-mem as tech-preview for aarch64
     + intel_idle: updates
     + megaraid_sas: driver update
     + net: drop_monitor: support drop reason
     + selftests: RHEL 9.1 backports from upstream
     + update tools/cpupower

24 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-98.el9:
     + hv_balloon: rate-limit "Unhandled message" warning
     + KVM: s390: pv: make use of ultravisor AIV support
     + update qla2xxx driver to latest upstream

23 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-97.el9 (fixes: CVE-2022-1012, CVE-2022-27666):
     + bridge: update bridge and switchdev to upstream v5.18
     + cifs: truncate the inode and mapping when we simulate fcollapse
     + Enable VM kselftests
     + net: esp: fix out-of-bounds writes (CVE-2022-27666)
     + quota: make dquot_quota_sync return errors from ->sync_fs
     + redhat/configs: enable GUP_TEST in debug kernel
     + ses: fix a fan issue
     + Sync SELinux/LSM code with upstream up to v5.18-rc5
     + tcp: Increase randomness for source port generation.

19 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-96.el9 (fixes: CVE-2022-28390):
     + can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path
     + powerpc/ibmvnic: Upgrade ibmvnic device driver to latest from upstream, e.g. kernel 5.18
     + powerps/pseries/dma: Add support for 2M IOMMU page size
     + soc/tegra: Add devm_tegra_core_dev_init_opp_table_common()
     + VFIO refresh to v5.18

19 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-95.el9:
     + mm: create a new system state and fix core_kernel_text()
     + openvswitch: Fix setting ipv6 fields causing hw csum failure
     + vmxnet3: Update network driver for RHEL 9.1

18 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-94.el9:
     + arch/arm64: Fix topology initialization for core scheduling
     + arm64: enable CONFIG_MEMORY_HOTREMOVE
     + arm64: Fix KPTI disabling on ThunderX
     + CNB: eth: fwnode: remove the addr len from mac helpers
     + CNB: rebase/update devlink for RHEL 9.1
     + dm integrity: fix memory corruption when tag_size is less than digest size
     + drivers/char/random.c: Update for kernel-rt
     + efi: Allow to enable EFI runtime services by default on RT
     + ipvlan/macvlan: phase-1 updates for 9.1
     + locking: Backport upstream v5.18 locking/rcu commits for kernel-rt
     + md: fix NULL pointer deref with nowait but no mddev->queue
     + mptcp: rebase code to 5.18-net-next
     + net: backport core fixes from upstream
     + netfilter: phase 1 backports from upstream
     + netfilter: revert "kernel: lack of port sanity checking in natd and netfilter leads to exploit of OpenVPN clients"
     + NFSv4 only print the label when its queried
     + ntb_hw_amd: Add NTB PCI ID for new gen CPU
     + nvme: tp-8010 support
     + post upstream v5.14 backports for kprobes and arm64
     + scsi: target: update LIO to the latest version
     + xfs: punch out data fork delalloc blocks on COW writeback failure

14 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-92.el9:
     + aarch64: Enable NXP i.MX8M SoCs
     + ahci: update to latest
     + genirq/affinity: Consider that CPUs on nodes can be unbalanced
     + platform/x86: Add AMD system management interface
     + RDMA: update to v5.18-rc6
     + SCSI updates for 9.1
     + update qedf driver to latest upstream

13 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-90.el9:
     + bareudp: use ipv6_mod_enabled to check if IPv6 enabled
     + ip tunnels: backport upstream fixes
     + ipv4: Backport upstream fixes.
     + net: mpls: Fix notifications when deleting a device
     + Nvme misc fixes and quirks
     + other: backports from upstream
     + platform/x86/intel: Fix 'rmmod pmt_telemetry' panic
     + scsi: target: Allow changing dbroot if there are no registered devices
     + sctp: backports from upstream
     + tipc: backports from upstream
     + xfs: check sb_meta_uuid for dabuf buffer recovery

12 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-89.el9:
     + CNB: net: use eth_hw_addr_set()
     + Merge remote-tracking branch 'origin/merge-requests/627' into bz2069275
     + Merge remote-tracking branch 'origin/merge-requests/671' into bz2069275
     + Merge remote-tracking branch 'origin/merge-requests/673' into bz2069275
     + net: cipso: fix warnings in netlbl_cipsov4_add_std
     + sched/deadline: code cleanup
     + Scheduler header clean up
     + Scheduler RT prerequisites
     + wireguard: 9.1 P1 backports

11 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-88.el9:
     + mpt3sas: a bugfix
     + oom_kill.c: futex: delay the OOM reaper to allow time for proper futex cleanup
     + qed*: driver updates
     + sched/isolation: Split housekeeping cpumask per isolation features
     + Update ACPI code to match Linux v5.16
     + Update USB and Thunderbolt to v5.17
     + vrf: 9.1 P1 backports

9 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-87.el9 (fixes: CVE-2022-0617, CVE-2022-1353):
     + af_key: add __GFP_ZERO flag for compose_sadb_supported in function pfkey_register
     + Bring cifs.ko up to 5.16 plus some additional patches
     + cifs: destage any unwritten data to the server before calling copychunk_write
     + CNB: net: make use of helper netif_is_bridge_master()
     + CNB: xsk: Move tmp desc array from driver to pool
     + cpufreq: intel_pstate: updates
     + DAMON support
     + drivers/base/memory: determine and store zone for single-zone memory blocks
     + Fix CVE-2022-0617
     + General updates for kernel-rt
     + Information about perf-iostat is missing
     + macsec: backport fixes from upstream
     + mm: Optimize list lru memory consumption
     + proc/vmcore: pull back upstream commits to RHEL9
     + Redhat: enable Kfence on production servers
     + sctp: check asoc strreset_chunk in sctp_generate_reconf_event
     + tls: backport fixes from upstream
     + xfrm: backport fixes from upstream

7 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-86.el9:
     + cifs: fix NULL ptr dereference in smb2_ioctl_query_info()
     + CNB: skbuff: introduce skb_pull_data
     + CNB: stddef: Introduce DECLARE_FLEX_ARRAY() helper
     + CNB: virtchnl: Add support for new VLAN capabilities
     + configs: enable LOGITECH_FF
     + IDXD driver update for 9.1.0
     + perf: Sync with upstream v5.15
     + ping: a couple of fixes in ping_lookup
     + [RHEL-9.1.0 BZ 2068207] redhat: configs: Enable CONFIG_INTEL_IOMMU_DEBUGFS
     + veth: Ensure eth header is in skb's linear part

4 maio 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-85.el9 (fixes: CVE-2022-1015, CVE-2022-1016):
     + bnx2x: driver updates
     + CNB: net: annotate accesses to dev->gso_max_* fields
     + CNB: net_tstamp: add new flag HWTSTAMP_FLAG_BONDED_PHC_INDEX
     + CNB: string.h: Introduce memset_after and memset_startat helpers
     + DRM 5.18 backport dependencies
     + Fix for two recent CVEs
     + Fix SCTP client-side peeloff issues with SELinux
     + ipv6: 9.1 P1 stable backports from upstream
     + mm: backport folio support
     + netfilter: conntrack: Add and use nf_ct_set_auto_assign_helper_warned()
     + net: mana: Add handling of CQE_RX_TRUNCATED
     + redhat/configs: Enable CONFIG_NFT_SYNPROXY
     + redhat/configs: enable CONFIG_RANDOMIZE_KSTACK_OFFSET_DEFAULT
     + [RHEL-9.1.0] IPMI update to kernel v5.17
     + Update kernel's PCI subsystem to v5.17

30 abril 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-83.el9:
     + Add the amd_pstate driver
     + CNB: net: make dev_watchdog() less intrusive
     + net: fix NULL pointer reference in cipso_v4_doi_free
     + powerpc/pseries: Enable an interface to represent PAPR firmware attributes
     + redhat/configs: aarch64: enable CPU_FREQ_GOV_SCHEDUTIL
     + redhat: configs: Disable CONFIG_MPLS for s390x/zfcpdump
     + x86: intel_epb: Allow model specific normal EPB value
     + x86/platform/uv: UV Kernel support for UV5

29 abril 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-82.el9:
     + bpf, Skip base maps without names
     + CNB: Remove PDE_DATA() and replace by pde_data()
     + dmaengine: ptdma: Initial driver for the AMD PTDMA
     + e1000e: Add support for RPL-S
     + mm: lru_cache_disable: replace work queue synchronization with synchronize_rcu
     + mm/page_owner: Report memory cgroup info
     + mt76: mt7921e: fix possible probe failure after reboot
     + pci: fix multiple definition error when CONFIG_RHEL_DIFFERENCES is not set
     + perf: Fix typos in error messages
     + powerpc/lib/sstep: Don't use __{get/put}_user() on kernel addresses
     + Scheduler updates and fixes
     + selftests/bpf: Make test_lwt_ip_encap more stable and faster
     + Support PREEMPT_DYNAMIC on aarch64
     + ucounts: Backport fixes for ucount rlimits

27 abril 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-81.el9:
     + Add LPSS support for RPL-S
     + Enable i2c-i801 support for RPL-S
     + kABI: Prepare mm SST for kABI Lockdown
     + pinctrl: Add support for RPL-S
     + powerpc/pseries/vas: Enable NX-GZIP support with DLPAR and LPM operations
     + pseries/eeh: Fix the kdump kernel crash during eeh_pseries_init
     + RDMA/qedr: Fix reporting max_{send/recv}_wr attrs
     + s390/kexec: fix memory leak of ipl report buffer
     + selftests: xsk: Make packet validation more robust
     + smartpqi updates
     + x86: Introduce Intel SDSi

21 abril 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-80.el9 (fixes: CVE-2022-1015, CVE-2022-25636):
     + gfs2: Fix bugs revealed by the dct tool
     + Merge tag 'kernel-5.14.0-70.13.1.el9_0' from 9.0
     + netfilter: heap out of bounds write in nf_dup_netdev.c since 5.4
     + netfilter: nf_tables: validate registers coming from userspace.
     + redhat: disable uncommon media device infrastructure
     + redhat: Enable KASAN on all ELN debug kernels
     + Sched/numa: fix allowed numa imbalance
     + scsi: iscsi: iSCSI Offload regression fixes
     + Update thermal/drivers/int340x

19 abril 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-79.el9 (fixes: CVE-2020-36516):
     + audit: backport from upstream v5.13-rc1 to v5.16-rc6
     + block: update to v5.17
     + bpf/selftests: Fix namespace mount setup in tc_redirect
     + CNB: ipv6: separate ndisc_ns_create() from ndisc_send_ns()
     + Drivers: hv: Propagate VMBus coherence for performance
     + drivers/net: mark several as unmaintained
     + Fix panic while looking up a symlink due to NULL i_op->get_link
     + Fix "TSC Calibration failed" error
     + ibmvnic: fix race between xmit and reset
     + ice: bonding bug fixes
     + integrity: general upstream bugfixes
     + ipv4: avoid using shared IP generator for connected sockets
     + Merge tag 'kernel-5.14.0-70.11.1.el9_0' from 9.0
     + Merge tag 'kernel-5.14.0-70.12.1.el9_0' from 9.0
     + Merge up tags kernel-5.14.0-70.11.1.el9_0 to kernel-5.14.0-70.12.1.el9_0
     + mlxsw: Refactor parsing configuration
     + powerpc: fix some vm kernel selftests failures ( userfaultfd | userfaultfd_hugetlb | map_fixed_noreplace) [P10][DD2][Denali]
     + powerpc: P10 hardware counter (PMU/performance counters/perf:) Enhancements [FEAT]
     + powerpc: Support to handle control memory access error [FEAT]
     + powerpc/xive: Export XIVE IPI information for online-only processors.
     + Preallocate pgdat struct for all nodes during boot
     + rcu: Backport upstream RCU related commits up to v5.17
     + RDMA: update to v5.17
     + redhat/configs: disable CONFIG_CAN_SOFTING
     + redhat/configs: Enable WDT devices used by qemu VMs
     + Revert "xfs: actually bump warning counts when we send warnings"
     + Update kernel's PCI subsystem to v5.16

11 abril 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-78.el9 (fixes: CVE-2022-0995, CVE-2022-1011, CVE-2022-23960):
     + arm64: Spectre-BHB mitigation (CVE-2022-23960)
     + block: release rq qos structures for queue without disk
     + cifs: modefromsids must add an ACE for authenticated users
     + configs: enable CONFIG_RMI4_F3A
     + crypto: fips - Add algorithm-specific limits for FIPS
     + fuse: fix pipe buffer lifetime for direct_io
     + integrity: enable policy rule for restricting hash algo
     + KVM: SVM: Allow AVIC support on system w/ physical APIC ID > 255
     + Merge branch 'main' into nic_rdma
     + Merge branch 'net-doc' into nic_rdma
     + Merge commit '3801d2d30749ddab3e04e4998145b29bce09ac9a' into 9.0
     + Merge tag 'kernel-5.14.0-70.10.1.el9_0' from 9.0
     + Merge tag 'kernel-5.14.0-70.6.1.el9_0' from 9.0
     + Merge tag 'kernel-5.14.0-70.7.1.el9_0' from 9.0
     + Merge tag 'kernel-5.14.0-70.8.1.el9_0' from 9.0
     + Merge tag 'kernel-5.14.0-70.9.1.el9_0' from 9.0
     + Merge up tags kernel-5.14.0-70.6.1.el9_0 to kernel-5.14.0-70.10.1.el9_0
     + NFS: Don't loop forever in nfs_do_recoalesce()
     + perf symbols: Fix symbol size calculation condition
     + perf/x86/intel/uncore: Make uncore_discovery clean for 64 bit addresses
     + redhat: Add parallel processing of configs in dist-configs
     + redhat/configs: drop some config options for rhel 9
     + redhat/configs: remove unnecessary GPIO Kconfig options
     + redhat/Makefile: Fix dist-dump-variables target
     + [RHEL9.0 BZ2053219] amd/iommu: Fix I/O page table memory leak and recover from event log overflow
     + [RHEL9 BZ2061621] iommu/vt-d: Fix double list_add when enabling VMD in scalable mode
     + s390/mm: fix 2KB pgtable release race
     + scsi: iscsi: offload sync session regression impacting qedi
     + watch_queue: Fix filter limit check
     + Various changes and improvements that are poorly described in merge.

9 abril 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-77.el9 (fixes: CVE-2021-26401, CVE-2022-0001, CVE-2022-0002):
     + 2032117 - tpm: fix lpar crash when running on kexec with VTPM2.0 enabled [P10]
     + CNB: ethtool: update ethtool core to upstream v5.16
     + crypto: ccp: update ccp drivers upto v5.17
     + drm/i915/audio: Use BIOS provided value for RKL HDA link
     + Enable KVM AMX on SPR
     + futex: Fix PREEMPT_RT build
     + genirq: Provide new interfaces for affinity hints
     + ibmvnic: fix a race in ibmvnic_probe()
     + [Intel 9.1 Bug] SPR PMU Support: Uncore Events not enabled
     + KVM: use __vcalloc for very large allocations
     + lib/sbitmap: kill 'depth' from sbitmap_word
     + Merge tag 'kernel-5.14.0-70.5.1.el9_0' from 9.0
     + mm/memcg: Fix a lockdep splat in memory cgroup
     + mm: proactively backport MM fixes for RHEL-9.1
     + NFSD size, offset, and count sanity
     + perf tests attr: Add missing topdown metrics events
     + powerpc: Hard lockups are observed while running stress-ng and LPAR hangs [P8][P9][P10]
     + powerpc/papr_scm: Implement initial support for injecting smart errors
     + powerpc/pseries: Fix use after free panic
     + powerpc/smp: Update cpu_core_map on all PowerPc systems
     + redhat/configs: aarch64: Enable ARM_SPE_PMU
     + redhat: configs: Change aarch64 default dma domain to lazy
     + redhat: configs: Disable TPM 1.2 device drivers
     + redhat/configs: make SHA512_arch algos and CRYPTO_USER built-ins
     + redhat: fix make {distg-brew,distg-koji}
     + rename c9s pipeline from centos-stream-9 to c9s
     + SPR PMU Support: Uncore Events not enabled
     + Update kernel's PCI subsystem to v5.15
     + Update nvme to upstream 5.17-rc8
     + x86/speculation: Spectre-v2 BHI mitigation (CVE-2022-0001, CVE-2022-0002)

30 março 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-76.el9:
     + cifs: fix double free race when mount fails in cifs_get_root()
     + copy_process(): Move fd_install() out of sighand->siglock critical section
     + kernel/futex: backport new futex_waitv(2) system call
     + Merge tag 'kernel-5.14.0-70.4.1.el9_0' from 9.0
     + Move Intel PMT drivers into their own directory
     + Sync vDPA with upstream for RHEL9
     + tick/rcu: fix NOHZ tick-stop when performing DLPAR proc remove on ppc64le [P10]
     + x86/hyperv: Output host build info as normal Windows version number

27 março 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-75.el9 (fixes: CVE-2022-0742, CVE-2022-22942):
     + drm/ast: Create threshold values for AST2600
     + drm/vmwgfx: Fix stale file descriptors on failed usercopy
     + Fix FPU bugs that crash guest kernel after migration between newer->older cpu
     + gfs2: Fix fault_in_safe_writeable() for s390x
     + ipv6: fix skb drops in igmp6_event_query() and igmp6_event_report()
     + Merge tag 'kernel-5.14.0-70.3.1.el9_0' from 9.0
     + netfilter: nf_queue: fix socket refcount bugs
     + powerpc: drivers/char: Enable DLPAR operations with systems that have Guest Secure Boot and lockdown enabled
     + powerpc/pseries/ddw: Revert "Extend upper limit for huge DMA window for persistent memory"
     + redhat/configs: aarch64: Fix PAC/BTI config settings
     + redhat/configs: Disable KVM on POWER
     + redhat/configs: Disable watchdog components
     + RHEL9.0: arch_hw Update CONFIG_MOUSE_VSXXXAA=m
     + Sched: Fix fork versus cgroup race
     + scsi: mpi3mr: bug fixes
     + x86/cpu: Add Xeon Icelake-D to list of CPUs that support PPIN

22 março 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-74.el9:
     + Fix bad page state in process qemu-kvm when using TDP_MMU
     + powerpc/ibmvnic: DLPAR fix kernel Oops when add of vNIC device
     + redhat: rpminspect: disable 'patches' check for known empty patch files

21 março 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-73.el9 (fixes: CVE-2022-0516, CVE-2022-0847):
     + Add definition for RAPTOR_LAKE
     + block: kabi: reserve padding space for public structure
     + crypto: Make CRYPTO_EC* algos built-in
     + dm: fix crash and DM IO accounting
     + [EDAC] backport patches needed to support Genoa
     + Enable mellanox platform drivers to support LED, fan & watchdog devices
     + Fix edpc warning message
     + igb/igc: fix XDP registration
     + KVM: s390: Return error on SIDA memop on normal guest
     + lib/iov_iter: initialize "flags" in new pipe_buffer
     + Merge tag 'kernel-5.14.0-70.2.1.el9_0' from 9.0
     + nvmet-tcp: fix missing tech preview messages
     + powerpc: fix kernel panic on boot of PowerVM systems that are running on shared processing mode [Hash]
     + redhat: change default dist suffix for RHEL 9.0
     + redhat/configs: Enable CONFIG_ACER_WIRELESS
     + redhat: prepare to enter into zstream and adjust support for kabi
     + scsi: lpfc: Fix pt2pt NVMe PRLI reject LOGO loop
     + scsi: mpt3sas: driver fixes
     + virtio-net: fix pages leaking when building skb in big mode

17 março 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-72.el9:
     + Merge tag 'kernel-5.14.0-70.1.1.el9_0' from 9.0
     + redhat/configs: Disable CONFIG_SURFACE_PLATFORMS
     + redhat/configs: Enable CONFIG_INTEL_PCH_THERMAL for x86
     + redhat: use centos x509.genkey file if building under centos
     + Revert 8dffe2b6 "Merge: kabi: add lib ACKed symbols"
     + SCSI host-managed SMR drive support in RHEL 9 is unmaintained and needs kernel warning message
     + spec: Fix separate tools build
     + spec: make linux-firmware weak(er) dependency

9 março 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-71.el9:
     + MDRAID - Update to the latest upstream
     + redhat: Bump RHEL_MINOR for 9.1

24 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-70.el9 (fixes: CVE-2022-0435, CVE-2022-0492, CVE-2022-24122):
     + Backport fixes for ucounts
     + bpf, arm64: Use emit_addr_mov_i64() for BPF_PSEUDO_FUNC
     + cgroup-v1: Require capabilities to set release_agent (CVE-2022-0492)
     + mm: fix invalid page pointer returned with FOLL_PIN gups
     + net: stmmac: Fix excessive swiotlb memory in nic driver
     + tipc: improve size validations for received domain records

24 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-69.el9:
     + wireless update to v5.16+

23 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-68.el9 (fixes: CVE-2021-22600, CVE-2021-4028, CVE-2022-0330):
     + drm/i915: Flush TLBs before releasing backing store
     + ena: update elastic network adapter to the latest upstream
     + ext4: fix remount with 'abort' option
     + kernel/sched/sched.h: Exclude cpuidle from KABI
     + kernel.spec: Add glibc-static build requirement
     + libbpf: Use dynamically allocated buffer when receiving netlink messages
     + netfilter:  nf_conntrack incorrectly checking SEQ on syn-ack packets
     + net/packet: rx_owner_map depends on pg_vec
     + powerpc: security: Lock down the kernel if booted in secure boot mode
     + RDMA/cma: Do not change route.addr.src_addr.ss_family
     + redhat/configs: Disable arch_hw disabled CONFIGS
     + redhat/configs: Disable CONFIG_SENSORS_NCT6683 in RHEL for arm/aarch64
     + sfc: update to v5.16
     + Thunderbolt: various fixes

22 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-67.el9:
     + block: fix for recent update to v5.16
     + ice: westport channel GPIO and SDP support
     + kabi: add lib ACKed symbols
     + redhat: switch the vsyscall config to CONFIG_LEGACY_VSYSCALL_XONLY=y
     + usb: xhci: Enable runtime-pm by default on AMD Yellow Carp platform

21 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-66.el9:
     + Update NFS to upstream v5.16

20 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-65.el9:
     + ALSA: backport for RHEL 9.0

18 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-64.el9 (fixes: CVE-2021-3753):
     + EDAC/i10nm: Retrieve and print retry_rd_err_log registers
     + ice: bugfix update for 9.0
     + igc: driver update for 9.0
     + nvme-fabrics: fix state check in nvmf_ctlr_matches_baseopts()
     + scsi: reserve space in structures for KABI
     + vt_kdsetmode: extend console locking
     + Various changes and improvements that are poorly described in merge.

18 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-63.el9:
     + ionic: driver update for 9.0
     + wireguard: 9.0 P2 backports from upstream

17 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-62.el9 (fixes: CVE-2021-43389):
     + Backport page unpoisoning fixes
     + blktrace: switch trace spinlock to a raw spinlock
     + cgroup/cpuset: Fix RCU lockdep splat
     + CNB: net: create netdev->dev_addr assignment helpers
     + ext4: fix potential NULL pointer dereference in ext4_fill_super()
     + firmware: smccc: Fix check for ARCH_SOC_ID not implemented
     + ibmvnic: fix ethtool -L causing system to hang
     + ibmvnic: Update driver return codes
     + igb: driver update for 9.0
     + isdn: cpai: check ctr->cnr to avoid array index out of bound
     + netfilter: ipset: Emit deprecation warning at set creation time
     + NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION
     + powerpc/fadump: fix "seek error: kernel virtual address: c0000027f5e19000" observed while running crash tool on vmcore captured during fadump
     + rcu: Tighten rcu_advance_cbs_nowake() checks
     + redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS
     + redhat/configs: Enable CONFIG_TEST_BPF
     + redhat: move CONFIG_ARM64_MTE to aarch64 config directory
     + s390/pv: fix the forcing of the swiotlb
     + scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put()
     + scsi: vmw_pvscsi: Set residual data length conditionally
     + tipc: backports from upstream, 2nd phase
     + Two small SELinux fixes

16 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-61.el9 (fixes: CVE-2021-4197, CVE-2021-4203, CVE-2022-0264):
     + bpf: Fix kernel address leakage in atomic fetch
     + cgroup: Use open-time credentials for process migraton perm checks
     + Enable KUNIT for CI Testing
     + IB/rdmavt: Validate remote_addr during loopback atomic tests
     + netfilter: P2 backports from upstream
     + nvme: fix a possible use-after-free in controller reset during load
     + ovs: backports P2 for 9.0
     + redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview
     + [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7
     + [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices
     + tracing: Fix trace_percpu_buffer
     + x86: add ITBM support for AlderLake

15 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-60.el9 (fixes: CVE-2021-4083):
     + bnx2x: Fix enabling network interfaces without VFs
     + bonding: driver update or RHEL 9.0
     + Change "-auto" suffix to fix CI automotive pipeline issues
     + crypto: jitter - add oversampling of noise source
     + fget: check that the fd still exists after getting a ref to it
     + igbvf: driver update for 9.0
     + ipv6: 9.0 P2 backports from upstream
     + nfsd: fix use-after-free due to delegation race
     + NVMe command id changes for use-after-free CQE detection
     + Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values"
     + sctp: backports from upstream, 2nd phase
     + tun: fix bonding active backup with arp monitoring
     + udp: backports from upstream, 2nd phase

12 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-59.el9:
     + gfs2: Upstream backports for mmap and deadlock fixes
     + x86/sgx: Update SGX subsystem code upto v5.16-rc5

10 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-58.el9 (fixes: CVE-2022-0185):
     + CI updates
     + Fix load tracking WARNINGs
     + Fix RTC based wakeup for Barcelo
     + Handle warning of allocation failure on DMA zone w/o managed pages
     + ipv4: stable backports for rhel 9.0  (phase 2)
     + KVM: x86: Fix Win11 guests with Hyper-V role + hv_evmcs
     + netfilter: nft_reject_bridge: Fix for missing reply from prerouting
     + PCI: hv: Add arm64 Hyper-V vPCI support
     + pinctrl: amd: Fix wakeups when IRQ is shared with SCI
     + [s390] s390/pci: move pseudo-MMIO to prevent MIO overlap
     + selftests/bpf: Enlarge select() timeout for test_maps
     + vfs: fs_context: fix up param length parsing in legacy_parse_param

9 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-57.el9 (fixes: CVE-2021-44733):
     + aacraid: add new messaging
     + arch/x86: KABI structs and array padding
     + dmaengine: idxd: Add wq occupancy information to sysfs attribute
     + dm: sync with upstream 5.17 and fix io accounting issue
     + fix use-after-free in tee driver
     + hpsa: add new messaging
     + lpfc: Add new messaging
     + mpi3mr: driver update
     + mpt3sas, megaraid_sas, mptsas: Add new messaging
     + mptcp: disable by default
     + net/sched: phase-2 stable backports for rhel9
     + NVMe/FC bug fixes for centos-stream-9
     + qla2xxx: Add new messaging
     + redhat: switch the kernel package to use certs from system-sb-certs
     + vrf: Reset IPCB/IP6CB when processing outbound pkts in vrf dev xmit

8 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-56.el9:
     + clocksource: Backport upstream fix for hpet fallback problem
     + CNB: pci: Make pci_enable_ptm() accessible for drivers
     + configs: disable CONFIG_CRAMFS
     + iommu/vt-d: Fix unmap_pages support
     + KVM: VMX: switch blocked_vcpu_on_cpu_lock to raw spinlock
     + Merge remote-tracking branch 'gitlab/rh/centos-stream-9/merge-requests/338' into cs9/bz2041931/kfree-skb-reason
     + net: backports before kABI freeze
     + PCI: Add kABI extensions for the kernel's PCI subsystem
     + ppp: ensure minimum packet size in ppp_write()
     + [RHEL-9.0] IPMI Add RH_KABI_RESERVE to kABI sensitive structs
     + x86/hyperv: Properly deal with empty cpumasks in hyperv_flush_tlb_multi()

5 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-55.el9:
     + nvme: drop scan_lock and always kick requeue list when removing namespaces
     + redhat/configs: Cleanup pending-common directory
     + redhat/configs: Enable CONFIG_PCI_P2PDMA
     + Resolve cpufreq errors on Alder Lake-S (ADL-S)
     + selftests: 9.0 P2 backport from upstream

4 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-54.el9:
     + Wireless stack and drivers update to v5.15

3 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-53.el9 (fixes: CVE-2021-40490):
     + ext4, jbd2 update for RHEL9.0

1 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-52.el9:
     + KVM: AArch64: Rebase to v5.15

1 fevereiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-51.el9:
     + Add packaged but empty /lib/modules/<kver>/systemtap
     + Add support for new AMD Family 19h models
     + irdma: Bug fixes from v5.16
     + powerpc/bpf: Update ldimm64 instructions during extra pass
     + RDMA: Bug fixes from v5.16
     + redhat: configs: add CONFIG_NTB and related items
     + redhat/configs: Enable CONFIG_DM_MULTIPATH_HST
     + Scheduler KABI padding
     + selftests: bpf: Fix bind on used port
     + tipc: backports from upstream

29 janeiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-50.el9:
     + CNB: bridge: update bridge and switchdev to the latest upstream
     + CNB: rebase/update devlink for RHEL 9.0
     + kernel: Add redhat code
     + kernel/rh_taint.c: Update to new messaging
     + mptcp: rebase to 5.16 net-next

27 janeiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-49.el9 (fixes: CVE-2021-3773, CVE-2021-4155, CVE-2021-4203):
     + adding support for c9s automotive coverage build
     + Add 'redhat/rhdocs/' from commit '8d40464cf1fcc46e23510dd722f9ec747a2ff432'
     + af_unix: fix races in sk_peer_pid and sk_peer_cred accesses
     + CNB: net: Remove redundant if statements
     + ip6_vti: initialize __ip6_tnl_parm struct in vti6_siocdevprivate
     + KVM: x86: Wait for IPIs to be delivered when handling Hyper-V TLB flush hypercall
     + netfilter: nat: force port remap to prevent shadowing well-known ports
     + net: introduce kfree_skb_reason
     + net: vlan: fix a UAF in vlan_dev_real_dev()
     + powerpc/cacheinfo: fix bigcores causing irq imbalance with irqbalance
     + powerpc: fix frame size warnings during kernel compilation with larger NR_CPUS value
     + powerpc: handle kdump appropriately with crash_kexec_post_notifiers option
     + powerpc/pseries: Fix memblock warning on bootup
     + redhat: Add documentation subtree
     + selftests/powerpc: fix security tests
     + xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate
     + Various changes and improvements that are poorly described in merge.

25 janeiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-48.el9:
     + net: mana: More MANA driver updates for RHEL 9.0
     + ibmvnic: fix error when allocating long term buffer during reset
     + [s390] Upgrade the qeth driver for s390x to latest
     + [s390] GLIBC: Support for new IBM Z Hardware - kernel part
     + ima: silence measurement list hexdump during kexec
     + scsi: lpfc: Update lpfc version to
     + scsi: lpfc: Fix non-recovery of remote ports following an unsolicited LOGO
     + mm/memcg: Exclude mem_cgroup pointer from kABI signature computation
     + NFS: Default change_attr_type to NFS4_CHANGE_TYPE_IS_UNDEFINED

22 janeiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-47.el9 (fixes: CVE-2021-4001):
     + nvmet: make discovery NQN configurable
     + nitro_enclaves: Use get_user_pages_unlocked() call to handle mmap assert
     + include/linux/pci.h: Exclude struct hotplug_slot from KABI
     + net/vsock: backport vsock fixes for RHEL-9.0
     + include/linux/irq*.h: Pad irq structs for KABI
     + include/linux/fwnode.h: Exclude fwnode structs from KABI
     + bpf: Fix toctou on read-only map's constant scalar tracking
     + ACPI: tables: FPDT: Do not print FW_BUG message if record types are reserved
     + virtio: support virtio-mem on x86-64 as tech-preview

21 janeiro 2022 Alexey Gladkov <legion at>

  • Updated to kernel-5.14.0-46.el9:
     + crypto: qat: Update QAT drivers upto v5.15

19 janeiro 2022 Alexey Gladkov <legion at>

  • Workqueue update for RT prerequisites
  • nvme: avoid race in shutdown namespace removal
  • powerpc/xmon: Dump XIVE information for online-only processors.
  • CVE-2021-20322 - ipv4: make exception cache less predictible
  • [s390] s390/cio: make ccw_device_dma_* more robust
  • [s390] s390/pci: add s390_iommu_aperture kernel parameter
  • [s390] s390/pci: cleanup resources only if necessary
  • [s390] s390/sclp: fix Secure-IPL facility detection
  • Revert "[redhat] Generate a crashkernel.default for each kernel build"
  • ibmvnic: fix kdump over nfs when auto priority disabled for ibmvnic
  • ibmvnic: don't stop queue in xmit
  • bpf/selftests: allow disabling tests
  • kernel/crash_core: suppress unknown crashkernel parameter warning
  • mm: fix memory onlining under the debug kernel
  • Fixing CVE-2021-3752 for RHEL-9
  • zstd: Sync with upstream 5.16 fixes and improvements

18 janeiro 2022 Alexey Gladkov <legion at>

  • dm: sync with upstream 5.16 fixes and improvements
  • redhat: Pull in openssl-devel as a build dependency correctly
  • platform/x86: think-lmi: add debug_cmd
  • include/linux/timer.h: Pad timer_list struct for KABI
  • kernel: Include RHEL Ecosystem message
  • include/linux/ioport.h: Pad resource struct for KABI
  • include/linux/hrtimer.h: Pad hrtimer struct for KABI
  • redhat/configs: Enable Zstandard compression
  • Enable iSER on s390x

15 janeiro 2022 Alexey Gladkov <legion at>

  • mm: fix for "CoW after fork()" "GUP after fork()" bug
  • powerpc/xive: Change IRQ domain to a tree domain
  • net: core stable backport for rhel 9.0
  • vhost_net: fix OoB on sendmsg() failure.
  • printk changes for kernel-rt

13 janeiro 2022 Alexey Gladkov <legion at>

  • smartpqi updates
  • powerpc/module_64: Fix livepatching for RO modules
  • net-sysfs: try not to restart the syscall if it will fail eventually
  • CI: Cleanup residue from ARK and enable RT check baselines
  • redhat: tune rpminspect configuration for upstream and badfuncs tests
  • redhat/configs: Enable CONFIG_CRYPTO_BLAKE2B
  • netfilter: conntrack: switch to siphash and include zone id in hash again
  • redhat: configs: increase CONFIG_DEBUG_KMEMLEAK_MEM_POOL_SIZE
  • iommu/dma: Fix incorrect error return on iommu deferred attach
  • RDMA/siw: Mark Software iWARP Driver as tech-preview
  • genirq changes for kernel-rt

13 janeiro 2022 Alexey Gladkov <legion at>

  • af_unix: Return errno instead of NULL in  unix_create1()
  • ftrace: do CPU checking after preemption disabled
  • redhat: build and include memfd to kernel-selftests-internal
  • netfilter: stable backports for rhel 9.0
  • netfilter: ipvs: make global sysctl readonly in non-init netns
  • netfilter: ipvs: make global sysctl readonly in non-init netns
  • net/sched: 9.0 P1 backports from upstream
  • redhat/configs/evaluate_configs: Add find dead configs option

11 janeiro 2022 Alexey Gladkov <legion at>

  • Replace deprecated CPU-hotplug functions for kernel-rt
  • Input: i8042 - Add quirk for Fujitsu Lifebook T725
  • sctp: backports from upstream
  • sctp: enhancements for the verification tag
  • Fix CVE-2020-27820
  • redhat/configs: NFS: disable UDP, insecure enctypes

24 dezembro 2021 Alexey Gladkov <legion at>

  • cpuidle: pseries: Fixup CEDE0 latency only for POWER10 onwards
  • powerpc/mce: Fix access error in mce handler
  • powerpc/pseries/mobility: ignore ibm, platform-facilities updates
  • KVM: SVM: Do not terminate SEV-ES guests on GHCB validation failure
  • redhat/configs: enable DWARF5 feature if toolchain supports it
  • init: make unknown command line param message clearer
  • Enable BT WCN6855 2.1 module
  • cgroup: Make rebind_subsystems() disable v2 controllers all at once
  • bnxt_en: PTP related commits for inclusion in RHEL 9.0

23 dezembro 2021 Alexey Gladkov <legion at>

  • Enable AMX(TMUL) for Sapphire Rapids

21 dezembro 2021 Alexey Gladkov <legion at>

  • drm/hyperv: Fix device removal on Gen1 VMs
  • redhat/configs: Always enable CONFIG_PCI_IOV for RHEL on s390x
  • wireguard: device: reset peer src endpoint when netns exits
  • NVMe-TCP fixes
  • ovl: fix missing negative dentry check in ovl_rename()
  • selftests/bpf: Fix some issues for selftest

19 dezembro 2021 Alexey Gladkov <legion at>

  • block: update to v5.16

16 dezembro 2021 Alexey Gladkov <legion at>

  • mm: update generic MM code to upstream v5.15

15 dezembro 2021 Alexey Gladkov <legion at>

  • Disable CONFIG_DEBUG_PREEMPT to restore performance
  • tcp: phase 1 stable backport for rhel 9.0
  • ibmvnic: Fixes for check failover_pending
  • kernfs: upstream kernfs concurrency improvement series
  • drm/hyperv: Fix double mouse pointers
  • Revert "watchdog: iTCO_wdt: Account for rebooting on second timeout"
  • redhat/kernel.spec.template: enable dependencies generation
  • redhat: configs: Update configs for vmware
  • redhat/configs: Enable CONFIG_DRM_VMWGFX on aarch64

14 dezembro 2021 Alexey Gladkov <legion at>

  • Rebase KVM x86 to 5.15

10 dezembro 2021 Alexey Gladkov <legion at>

  • hrtimer updates for RT prerequisites

9 dezembro 2021 Alexey Gladkov <legion at>

  • Backport v5.15 rcu/locking/cgroup dependencies for kernel-rt

8 dezembro 2021 Alexey Gladkov <legion at>

  • x86: change default to spec_store_bypass_disable=prctl spectre_v2_user=prctl
  • Provide and Configure DYNAMIC_PREEMPT
  • x86/sgx: mark tech preview
  • net: ipv6 p1 stable backport from upstream
  • ipv4: stable backports for rhel 9.0
  • crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd()
  • net/l2tp: Fix reference count leak in l2tp_udp_recv_core
  • megaraid_sas: driver update
  • tpm: Avoid error message when process gets signal while waiting and other upstream fixes

7 dezembro 2021 Alexey Gladkov <legion at>

  • Add 9p modules.

6 dezembro 2021 Alexey Gladkov <legion at>

  • ceph: bring ceph client code up to v5.16-rc1

3 dezembro 2021 Alexey Gladkov <legion at>

  • fix  '/proc/pid/wchan is always "0"'
  • powerpc/bpf: Fix write protecting JIT code
  • vfs: check fd has read access in kernel_read_file_from_fd()
  • Disable idmapped mounts
  • Sync s390x KVM code with upstream kernel v5.15
  • redhat/configs: Remove CONFIG_INFINIBAND_I40IW

2 dezembro 2021 Alexey Gladkov <legion at>

  • perf test: Handle fd gaps in test__dso_data_reopen
  • perf tests vmlinux-kallsyms: Ignore hidden symbols
  • perf script: Fix PERF_SAMPLE_WEIGHT_STRUCT support
  • redhat/kernel.spec.template: Link perf with --export-dynamic
  • xfs: fix I_DONTCACHE
  • Fix virtio problem on s390x with raw DASD devices
  • net/tls: backport fixes from 5.15
  • x86: hv: Hyper-V x86-64 updates for Centos Stream 9
  • Upgrade the SMC driver for s390x to latest from upstream
  • cifs: enable SMB_DIRECT in RHEL9
  • mpt3sas: driver update
  • Support DMA implementation of Offload Service Engine (OSE) for Elkhart Lake
  • vmxnet3: Update network driver for RHEL 9.0

30 novembro 2021 Alexey Gladkov <legion at>

  • CNB: pci: add several VPD helpers

27 novembro 2021 Alexey Gladkov <legion at>

  • Add automotive CI jobs
  • post 5.14 scheduler fixes

26 novembro 2021 Alexey Gladkov <legion at>

  • Add files needed for kbuild.

26 novembro 2021 Alexey Gladkov <legion at>

  • clocksource: Workaround the hpet fallback problem
  • scsi: target: Fix the pgr/alua_support_store functions
  • redhat: fix typo and make the output more silent for dist-git sync
  • Improve performace of AMD C3 entry for Family 17h and later
  • lpfc updates for centos-9
  • x86/Kconfig: Do not enable AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT automatically
  • ucounts: Fix signal ucount refcounting
  • x86/cpu: Fix migration safety with X86_BUG_NULL_SEL
  • net: gre: fix csum validation for gre4 and gre6
  • redhat/configs: enable KEXEC_SIG for aarch64
  • kernel.spec: add bpf_testmod.ko to kselftests/bpf
  • netfilter: Add deprecation notices for xtables

25 novembro 2021 Alexey Gladkov <legion at>

  • powerpc/svm: Don't issue ultracalls if !mem_encrypt_active() (Herton R. Krzesinski)

21 novembro 2021 Alexey Gladkov <legion at>

  • First build for ALTLinux.
projeto & código: Vladimir Lettiev aka crux © 2004-2005, Andrew Avramenko aka liks © 2007-2008
mantenedor atual: Michael Shigorin
mantenedor da tradução: Fernando Martini aka fmartini © 2009