Skip to content

Commit 6d87b50

Browse files
author
CKI KWF Bot
committed
[redhat] kernel-5.14.0-620.el9
Signed-off-by: CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com>
1 parent b29b29c commit 6d87b50

File tree

2 files changed

+129
-1
lines changed

2 files changed

+129
-1
lines changed

Makefile.rhelver

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -12,7 +12,7 @@ RHEL_MINOR = 8
1212
#
1313
# Use this spot to avoid future merge conflicts.
1414
# Do not trim this comment.
15-
RHEL_RELEASE = 619
15+
RHEL_RELEASE = 620
1616

1717
#
1818
# ZSTREAM

redhat/kernel.changelog-9.8

Lines changed: 128 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,131 @@
1+
* Fri Sep 26 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-620.el9]
2+
- use uniform permission checks for all mount propagation changes (Ian Kent) [RHEL-107304] {CVE-2025-38498}
3+
- do_change_type(): refuse to operate on unmounted/not ours mounts (Ian Kent) [RHEL-107304] {CVE-2025-38498}
4+
- selftests: netfilter: skip br_netfilter queue tests if kernel is tainted (Waiman Long) [RHEL-107520]
5+
- fhandle: do_handle_open() should get FD with user flags (Waiman Long) [RHEL-107520]
6+
- Documentation/sysctl: coredump: add %%F for pidfd number (Waiman Long) [RHEL-107520]
7+
- pidfs: never refuse ppid == 0 in PIDFD_GET_INFO (Waiman Long) [RHEL-107520]
8+
- fs/fhandle.c: fix a race in call of has_locked_children() (Waiman Long) [RHEL-107520] {CVE-2025-38306}
9+
- coredump: hand a pidfd to the usermode coredump helper (Waiman Long) [RHEL-107520]
10+
- coredump: fix error handling for replace_fd() (Waiman Long) [RHEL-107520]
11+
- pidfs: move O_RDWR into pidfs_alloc_file() (Waiman Long) [RHEL-107520]
12+
- pidfs/selftests: ensure correct headers for ioctl handling (Waiman Long) [RHEL-107520]
13+
- selftests/pidfd: fix header inclusion (Waiman Long) [RHEL-107520]
14+
- pidfs: improve ioctl handling (Waiman Long) [RHEL-107520]
15+
- selftests: remove unneeded include (Waiman Long) [RHEL-107520]
16+
- pidfs: allow bind-mounts (Waiman Long) [RHEL-107520]
17+
- pidfs: lookup pid through rbtree (Waiman Long) [RHEL-107520]
18+
- pidfs: check for valid ioctl commands (Waiman Long) [RHEL-107520]
19+
- pidfs: implement file handle support (Waiman Long) [RHEL-107520]
20+
- exportfs: add permission method (Waiman Long) [RHEL-107520]
21+
- fhandle: pull CAP_DAC_READ_SEARCH check into may_decode_fh() (Waiman Long) [RHEL-107520]
22+
- exportfs: add open method (Waiman Long) [RHEL-107520]
23+
- fhandle: simplify error handling (Waiman Long) [RHEL-107520]
24+
- pseudofs: add support for export_ops (Waiman Long) [RHEL-107520]
25+
- pidfs: support FS_IOC_GETVERSION (Waiman Long) [RHEL-107520]
26+
- pidfs: remove 32bit inode number handling (Waiman Long) [RHEL-107520]
27+
- pidfs: rework inode number allocation (Waiman Long) [RHEL-107520]
28+
- fs: fix is_mnt_ns_file() (Waiman Long) [RHEL-107520]
29+
- pidfd: add ioctl to retrieve pid info (Waiman Long) [RHEL-107520]
30+
- pidfs: check for valid pid namespace (Waiman Long) [RHEL-107520]
31+
- rbtree: provide rb_find_rcu() / rb_find_add_rcu() (Waiman Long) [RHEL-107520]
32+
- file: add fput() cleanup helper (Waiman Long) [RHEL-107520]
33+
- libfs: fix get_stashed_dentry() (Waiman Long) [RHEL-107520] {CVE-2024-46801}
34+
- pidfs: add selftests for new namespace ioctls (Waiman Long) [RHEL-107520]
35+
- pidfs: handle kernels without namespaces cleanly (Waiman Long) [RHEL-107520]
36+
- pidfs: when time ns disabled add check for ioctl (Waiman Long) [RHEL-107520]
37+
- pidfs: allow retrieval of namespace file descriptors (Waiman Long) [RHEL-107520]
38+
- nsfs: add open_namespace() (Waiman Long) [RHEL-107520]
39+
- nsproxy: add helper to go from arbitrary namespace to ns_common (Waiman Long) [RHEL-107520]
40+
- nsproxy: add a cleanup helper for nsproxy (Waiman Long) [RHEL-107520]
41+
- file: add take_fd() cleanup helper (Waiman Long) [RHEL-107520]
42+
- path: add cleanup helper (Waiman Long) [RHEL-107520]
43+
- fhandle: relax open_by_handle_at() permission checks (Waiman Long) [RHEL-107520]
44+
- fs/pidfs: make 'lsof' happy with our inode changes (Waiman Long) [RHEL-107520]
45+
- selftests: pidfd: ksft_exit functions do not return (Waiman Long) [RHEL-107520]
46+
- fs: Annotate struct file_handle with __counted_by() and use struct_size() (Waiman Long) [RHEL-107520]
47+
- selftests/pidfd: Fix wrong expectation (Waiman Long) [RHEL-107520]
48+
- selftests/pidfd: Fix config for pidfd_setns_test (Waiman Long) [RHEL-107520]
49+
- pidfs: remove config option (Waiman Long) [RHEL-107520]
50+
- libfs: improve path_from_stashed() (Waiman Long) [RHEL-107520]
51+
- libfs: add stashed_dentry_prune() (Waiman Long) [RHEL-107520]
52+
- libfs: improve path_from_stashed() helper (Waiman Long) [RHEL-107520]
53+
- pidfs: convert to path_from_stashed() helper (Waiman Long) [RHEL-107520]
54+
- nsfs: convert to path_from_stashed() helper (Waiman Long) [RHEL-107520]
55+
- libfs: add path_from_stashed() (Waiman Long) [RHEL-107520]
56+
- pidfd: add pidfs (Waiman Long) [RHEL-107520]
57+
- pidfd: move struct pidfd_fops (Waiman Long) [RHEL-107520]
58+
- pidfd: allow to override signal scope in pidfd_send_signal() (Waiman Long) [RHEL-107520]
59+
- pidfd: change pidfd_send_signal() to respect PIDFD_THREAD (Waiman Long) [RHEL-107520]
60+
- signal: fill in si_code in prepare_kill_siginfo() (Waiman Long) [RHEL-107520]
61+
- selftests: add ESRCH tests for pidfd_getfd() (Waiman Long) [RHEL-107520]
62+
- pidfd: getfd should always report ESRCH if a task is exiting (Waiman Long) [RHEL-107520]
63+
- pidfd: clone: allow CLONE_THREAD | CLONE_PIDFD together (Waiman Long) [RHEL-107520]
64+
- pidfd: change do_notify_pidfd() to use __wake_up(poll_to_key(EPOLLIN)) (Waiman Long) [RHEL-107520]
65+
- pid: kill the obsolete PIDTYPE_PID code in transfer_pid() (Waiman Long) [RHEL-107520]
66+
- pidfd: kill the no longer needed do_notify_pidfd() in de_thread() (Waiman Long) [RHEL-107520]
67+
- pidfd_poll: report POLLHUP when pid_task() == NULL (Waiman Long) [RHEL-107520]
68+
- pidfd: implement PIDFD_THREAD flag for pidfd_open() (Waiman Long) [RHEL-107520]
69+
- pidfd: don't do_notify_pidfd() if !thread_group_empty() (Waiman Long) [RHEL-107520]
70+
- pidfd: cleanup the usage of __pidfd_prepare's flags (Waiman Long) [RHEL-107520]
71+
- fork: Using clone_flags for legacy clone check (Waiman Long) [RHEL-107520]
72+
- __kill_pgrp_info: simplify the calculation of return value (Waiman Long) [RHEL-107520]
73+
- selftests/pidfd: Fix ksft print formats (Waiman Long) [RHEL-107520]
74+
- fs: convert core infrastructure to new timestamp accessors (Waiman Long) [RHEL-107520]
75+
- fs: new accessor methods for atime and mtime (Waiman Long) [RHEL-107520]
76+
- nsproxy: Convert nsproxy.count to refcount_t (Waiman Long) [RHEL-107520]
77+
- kernfs: convert to ctime accessor functions (Waiman Long) [RHEL-107520]
78+
- selftest: pidfd: Omit long and repeating outputs (Waiman Long) [RHEL-107520]
79+
- convert setns(2) to fdget()/fdput() (Waiman Long) [RHEL-107520]
80+
- fs: consolidate duplicate dt_type helpers (Waiman Long) [RHEL-107520]
81+
- Update relatime comments to include equality (Waiman Long) [RHEL-107520]
82+
- fork: use pidfd_prepare() (Waiman Long) [RHEL-107520]
83+
- pid: add pidfd_prepare() (Waiman Long) [RHEL-107520]
84+
- fork: allow CLONE_NEWTIME in clone3 flags (Waiman Long) [RHEL-107520]
85+
- selftests: pidfd: Fix incorrect kernel headers search path (Waiman Long) [RHEL-107520]
86+
- core_pattern: add CPU specifier (Waiman Long) [RHEL-107520]
87+
- selftests/pidfd_test: Remove the erroneous ',' (Waiman Long) [RHEL-107520]
88+
- selftests: pidfd: Fix compling warnings (Waiman Long) [RHEL-107520]
89+
- ksefltests: pidfd: Fix wait_states: Test terminated by timeout (Waiman Long) [RHEL-107520]
90+
- fork: remove duplicate included header files (Waiman Long) [RHEL-107520]
91+
- signal: Drop signals received after a fatal signal has been processed (Waiman Long) [RHEL-107520]
92+
- signal: Guarantee that SIGNAL_GROUP_EXIT is set on process exit (Waiman Long) [RHEL-107520]
93+
- signal: Ensure SIGNAL_GROUP_EXIT gets set in do_group_exit (Waiman Long) [RHEL-107520]
94+
- dynamic_dname(): drop unused dentry argument (Waiman Long) [RHEL-107520]
95+
- fork: Explicitly set PF_KTHREAD (Waiman Long) [RHEL-107520]
96+
- selftests: fix an unused variable warning in pidfd selftest (Waiman Long) [RHEL-107520]
97+
- selftests: fixup build warnings in pidfd / clone3 tests (Waiman Long) [RHEL-107520]
98+
- pidfd: fix test failure due to stack overflow on some arches (Waiman Long) [RHEL-107520]
99+
- kernel/fork.c: unshare(): use swap() to make code cleaner (Waiman Long) [RHEL-107520]
100+
- kernel/fork.c: unexport get_{mm,task}_exe_file (Waiman Long) [RHEL-107520]
101+
- kernel/pid.c: implement additional checks upon pidfd_create() parameters (Waiman Long) [RHEL-107520]
102+
- arm64: debug: remove debug exception registration infrastructure (Luis Claudio R. Goncalves) [RHEL-65658]
103+
- trap: cleanup trap_init() (Luis Claudio R. Goncalves) [RHEL-65658]
104+
- arm64: debug: split bkpt32 exception entry (Luis Claudio R. Goncalves) [RHEL-65658]
105+
- arm64: debug: split brk64 exception entry (Luis Claudio R. Goncalves) [RHEL-65658]
106+
- arm64: debug: split hardware watchpoint exception entry (Luis Claudio R. Goncalves) [RHEL-65658]
107+
- arm64: debug: split single stepping exception entry (Luis Claudio R. Goncalves) [RHEL-65658]
108+
- arm64: debug: refactor reinstall_suspended_bps() (Luis Claudio R. Goncalves) [RHEL-65658]
109+
- arm64: debug: split hardware breakpoint exception entry (Luis Claudio R. Goncalves) [RHEL-65658]
110+
- arm64: entry: Add entry and exit functions for debug exceptions (Luis Claudio R. Goncalves) [RHEL-65658]
111+
- arm64: debug: remove break/step handler registration infrastructure (Luis Claudio R. Goncalves) [RHEL-65658]
112+
- arm64: debug: call step handlers statically (Luis Claudio R. Goncalves) [RHEL-65658]
113+
- arm64: debug: call software breakpoint handlers statically (Luis Claudio R. Goncalves) [RHEL-65658]
114+
- arm64: kretprobes: acquire the regs via a BRK exception (Luis Claudio R. Goncalves) [RHEL-65658]
115+
- arm64: kprobes: Return DBG_HOOK_ERROR if kprobes can not handle a BRK (Luis Claudio R. Goncalves) [RHEL-65658]
116+
- arm64: Return early when break handler is found on linked-list (Luis Claudio R. Goncalves) [RHEL-65658]
117+
- arm64: refactor aarch32_break_handler() (Luis Claudio R. Goncalves) [RHEL-65658]
118+
- arm64: debug: clean up single_step_handler logic (Luis Claudio R. Goncalves) [RHEL-65658]
119+
- arm64: Subscribe Microsoft Azure Cobalt 100 to erratum 3194386 (Jeremy Linton) [RHEL-108306]
120+
- arm64: errata: Expand speculative SSBS workaround once more (Jeremy Linton) [RHEL-108306]
121+
- arm64: errata: Expand speculative SSBS workaround (again) (Jeremy Linton) [RHEL-108306]
122+
- tools headers arm64: Sync arm64's cputype.h with the kernel sources (Jeremy Linton) [RHEL-108306]
123+
- arm64: cputype: Add Neoverse-N3 definitions (Jeremy Linton) [RHEL-108306]
124+
- arm64: cputype: Add Cortex-A725 definitions (Jeremy Linton) [RHEL-108306]
125+
- arm64: cputype: Add Cortex-X1C definitions (Jeremy Linton) [RHEL-108306]
126+
- EDAC/amd64: Correct number of UMCs for family 19h models 70h-7fh (Joel Savitz) [RHEL-102251]
127+
Resolves: RHEL-102251, RHEL-107304, RHEL-107520, RHEL-108306, RHEL-65658
128+
1129
* Tue Sep 23 2025 CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-619.el9]
2130
- platform/x86/intel: power-domains: Use topology_logical_package_id() for package ID (David Arcari) [RHEL-110754]
3131
- io_uring/futex: ensure io_futex_wait() cleans up properly on failure (CKI Backport Bot) [RHEL-114337] {CVE-2025-39698}

0 commit comments

Comments
 (0)