[redhat] kernel-5.14.0-611.1.1.el9_7

Signed-off-by: CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com>

Author: CKI KWF Bot

Makefile.rhelver

@@ -12,7 +12,7 @@ RHEL_MINOR = 7
 #
 # Use this spot to avoid future merge conflicts.
 # Do not trim this comment.
-RHEL_RELEASE = 611
+RHEL_RELEASE = 611.1.1
 
 #
 # ZSTREAM

redhat/kernel.changelog-9.7

@@ -1,3 +1,54 @@
+* Sat Sep 06 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-611.1.1.el9_7]
+- redhat: set defaults for RHEL 9.7 (Augusto Caringi)
+- posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() (CKI Backport Bot) [RHEL-112783] {CVE-2025-38352}
+- fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass (Audra Mitchell) [RHEL-110312] {CVE-2025-38396}
+- idpf: convert control queue mutex to a spinlock (Michal Schmidt) [RHEL-106051] {CVE-2025-38392}
+- redhat/configs: Enable CONFIG_MITIGATION_TSA for x86 (Waiman Long) [RHEL-83897]
+- x86/process: Move the buffer clearing before MONITOR (Waiman Long) [RHEL-83897 RHEL-83906] {CVE-2024-36357 CVE-2024-36350}
+- x86/microcode/AMD: Add TSA microcode SHAs (Waiman Long) [RHEL-83897 RHEL-83906] {CVE-2024-36357 CVE-2024-36350}
+- KVM: SVM: Advertise TSA CPUID bits to guests (Waiman Long) [RHEL-83897 RHEL-83906] {CVE-2024-36357 CVE-2024-36350}
+- x86/bugs: Add a Transient Scheduler Attacks mitigation (Waiman Long) [RHEL-83897 RHEL-83906] {CVE-2024-36357 CVE-2024-36350}
+- x86/bugs: Rename MDS machinery to something more generic (Waiman Long) [RHEL-83897 RHEL-83906] {CVE-2024-36357 CVE-2024-36350}
+- x86/idle: Use MONITOR and MWAIT mnemonics in <asm/mwait.h> (Waiman Long) [RHEL-83897]
+- x86/idle: Remove .s output beautifying delimiters from simpler asm() templates (Waiman Long) [RHEL-83897]
+- x86/idle: Standardize argument types for MONITOR{,X} and MWAIT{,X} instruction wrappers on 'u32' (Waiman Long) [RHEL-83897]
+- x86/idle: Remove MFENCEs for X86_BUG_CLFLUSH_MONITOR in mwait_idle_with_hints() and  prefer_mwait_c1_over_halt() (Waiman Long) [RHEL-83897]
+- x86/bugs: Rename mmio_stale_data_clear to cpu_buf_vm_clear (Waiman Long) [RHEL-83897]
+- x86/microcode: Consolidate the loader enablement checking (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Fix __apply_microcode_amd()'s return value (Waiman Long) [RHEL-83897] {CVE-2025-22047}
+- x86/microcode/AMD: Add some forgotten models to the SHA check (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Load only SHA256-checksummed patches (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Add get_patch_level() (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Get rid of the _load_microcode_amd() forward declaration (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Merge early_apply_microcode() into its single callsite (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Remove unused save_microcode_in_initrd_amd() declarations (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Remove ugly linebreak in __verify_patch_section() signature (Waiman Long) [RHEL-83897]
+- x86/cpu: Introduce new microcode matching helper (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Remove ret local var in early_apply_microcode() (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Have __apply_microcode_amd() return bool (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Return bool from find_blobs_in_containers() (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Flush patch buffer mapping after application (Waiman Long) [RHEL-83897]
+- x86/CPU/AMD: Terminate the erratum_1386_microcode array (Waiman Long) [RHEL-83897] {CVE-2024-56721}
+- x86/mm: Carve out INVLPG inline asm for use by others (Waiman Long) [RHEL-83897]
+- x86/cpu: Fix formatting of cpuid_bits[] in scattered.c (Waiman Long) [RHEL-83897]
+- x86/cpufeatures: Add X86_FEATURE_AMD_WORKLOAD_CLASS feature bit (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Split load_microcode_amd() (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Pay attention to the stepping dynamically (Waiman Long) [RHEL-83897]
+- x86/bugs: Use code segment selector for VERW operand (Waiman Long) [RHEL-83897] {CVE-2024-50072}
+- x86/microcode/AMD: Fix a -Wsometimes-uninitialized clang false positive (Waiman Long) [RHEL-83897]
+- x86/microcode/AMD: Use the family,model,stepping encoded in the patch ID (Waiman Long) [RHEL-83897]
+- x86/CPU/AMD: Improve the erratum 1386 workaround (Waiman Long) [RHEL-83897]
+- x86: Add a comment about the "magic" behind shadow sti before mwait (Waiman Long) [RHEL-83897]
+- x86/bugs: Revert "Reverse instruction order of CLEAR_CPU_BUFFERS" (Waiman Long) [RHEL-83897]
+- scsi: mpt3sas: Fix a fw_event memory leak (Tomas Henzl) [RHEL-108656]
+- Revert "drm/gem-dma: Use dma_buf from GEM object instance" (Robert Foss) [RHEL-106696]
+- Revert "drm/gem-framebuffer: Use dma_buf from GEM object instance" (Robert Foss) [RHEL-106696]
+- Revert "drm/prime: Use dma_buf from GEM object instance" (Robert Foss) [RHEL-106696]
+- drm/framebuffer: Acquire internal references on GEM handles (Robert Foss) [RHEL-106696]
+- drm/gem: Acquire references on GEM handles for framebuffers (CKI Backport Bot) [RHEL-106696] {CVE-2025-38449}
+- Revert "e1000e: change k1 configuration on MTP and later platforms" (Michal Schmidt) [RHEL-110519]
+Resolves: RHEL-106051, RHEL-106696, RHEL-108656, RHEL-110312, RHEL-110519, RHEL-112783, RHEL-83897, RHEL-83906
+
 * Fri Aug 22 2025 Jarod Wilson <jarod@redhat.com> [5.14.0-611.el9]
 - HID: wacom: fix crash in wacom_aes_battery_handler() (Benjamin Tissoires) [RHEL-102058]
 - HID: wacom: fix kobject reference count leak (Benjamin Tissoires) [RHEL-102058]