GIT Revision: 25ac2e03f5e8b876dcffaab3b0c49960d83f2aab

GIT Branch: SL-16.0
2026-02-27 00:00:12 +0000

dtb-aarch64.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

dtb-aarch64.spec

@@ -27,7 +27,7 @@
 Name:           dtb-aarch64
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif

kernel-64kb.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

kernel-64kb.spec

@@ -19,7 +19,7 @@
 
 %define srcversion 6.12
 %define patchversion 6.12.0
-%define git_commit 2763a5a5f373b1987b3ad6adb7f9d107f6175682
+%define git_commit 25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 %define variant %{nil}
 %define compress_modules zstd
 %define compress_vmlinux xz
@@ -42,7 +42,7 @@
 Name:           kernel-64kb
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif

kernel-azure.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

kernel-azure.spec

@@ -19,7 +19,7 @@
 
 %define srcversion 6.12
 %define patchversion 6.12.0
-%define git_commit 2763a5a5f373b1987b3ad6adb7f9d107f6175682
+%define git_commit 25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 %define variant %{nil}
 %define compress_modules zstd
 %define compress_vmlinux xz
@@ -42,7 +42,7 @@
 Name:           kernel-azure
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif

kernel-default.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

kernel-default.spec

@@ -19,7 +19,7 @@
 
 %define srcversion 6.12
 %define patchversion 6.12.0
-%define git_commit 2763a5a5f373b1987b3ad6adb7f9d107f6175682
+%define git_commit 25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 %define variant %{nil}
 %define compress_modules zstd
 %define compress_vmlinux xz
@@ -42,7 +42,7 @@
 Name:           kernel-default
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif

kernel-docs.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

kernel-docs.spec

@@ -18,7 +18,7 @@
 
 %define srcversion 6.12
 %define patchversion 6.12.0
-%define git_commit 2763a5a5f373b1987b3ad6adb7f9d107f6175682
+%define git_commit 25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 %define variant %{nil}
 %define build_html 1
 %define build_pdf 0
@@ -30,7 +30,7 @@
 Name:           kernel-docs
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif

kernel-kvmsmall.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

kernel-kvmsmall.spec

@@ -19,7 +19,7 @@
 
 %define srcversion 6.12
 %define patchversion 6.12.0
-%define git_commit 2763a5a5f373b1987b3ad6adb7f9d107f6175682
+%define git_commit 25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 %define variant %{nil}
 %define compress_modules zstd
 %define compress_vmlinux xz
@@ -42,7 +42,7 @@
 Name:           kernel-kvmsmall
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif

kernel-obs-build.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

kernel-obs-build.spec

@@ -38,7 +38,7 @@
 %endif
 %endif
 %endif
-%global kernel_package kernel%kernel_flavor-srchash-2763a5a5f373b1987b3ad6adb7f9d107f6175682
+%global kernel_package kernel%kernel_flavor-srchash-25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 %endif
 %if 0%{?rhel_version}
 %global kernel_package kernel
@@ -47,14 +47,14 @@
 Name:           kernel-obs-build
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif
 Summary:        package kernel and initrd for OBS VM builds
 License:        GPL-2.0-only
 Group:          SLES
-Provides:       kernel-obs-build-srchash-2763a5a5f373b1987b3ad6adb7f9d107f6175682
+Provides:       kernel-obs-build-srchash-25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 BuildRequires:  coreutils
 BuildRequires:  device-mapper
 BuildRequires:  dracut

kernel-obs-qa.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

kernel-obs-qa.spec

@@ -25,7 +25,7 @@
 Name:           kernel-obs-qa
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif
@@ -36,7 +36,7 @@ BuildRequires:  kernel-default
 # kernel-obs-build must be also configured as VMinstall, but is required
 # here as well to avoid that qa and build package build parallel
 %if ! 0%{?qemu_user_space_build}
-BuildRequires:  kernel-obs-build-srchash-2763a5a5f373b1987b3ad6adb7f9d107f6175682
+BuildRequires:  kernel-obs-build-srchash-25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 %endif
 BuildRequires:  modutils
 ExclusiveArch:  aarch64 ppc64le s390x x86_64

kernel-rt.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

kernel-rt.spec

@@ -19,7 +19,7 @@
 
 %define srcversion 6.12
 %define patchversion 6.12.0
-%define git_commit 2763a5a5f373b1987b3ad6adb7f9d107f6175682
+%define git_commit 25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 %define variant %{nil}
 %define compress_modules zstd
 %define compress_vmlinux xz
@@ -42,7 +42,7 @@
 Name:           kernel-rt
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif

kernel-source.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

kernel-source.spec

@@ -18,7 +18,7 @@
 
 %define srcversion 6.12
 %define patchversion 6.12.0
-%define git_commit 2763a5a5f373b1987b3ad6adb7f9d107f6175682
+%define git_commit 25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 %define variant %{nil}
 %define gcc_package gcc13
 %define gcc_compiler gcc-13
@@ -30,7 +30,7 @@
 Name:           kernel-source
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif

kernel-syms.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

kernel-syms.spec

@@ -16,7 +16,7 @@
 #
 
 
-%define git_commit 2763a5a5f373b1987b3ad6adb7f9d107f6175682
+%define git_commit 25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 %define variant %{nil}
 
 %include %_sourcedir/kernel-spec-macros
@@ -24,7 +24,7 @@
 Name:           kernel-syms
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif

kernel-zfcpdump.changes

@@ -1,3 +1,230 @@
+-------------------------------------------------------------------
+Wed Feb 25 15:08:24 CET 2026 - ailiop@suse.com
+
+- NFS: Fix a deadlock involving nfs_release_folio()
+  (CVE-2026-23053 bsc#1257718).
+- commit 48b00b3
+
+-------------------------------------------------------------------
+Wed Feb 25 14:55:23 CET 2026 - ailiop@suse.com
+
+- nfsd: provide locking for v4_end_grace (git-fixes).
+- commit 86e35a2
+
+-------------------------------------------------------------------
+Wed Feb 25 12:30:10 CET 2026 - ailiop@suse.com
+
+- rxrpc: Fix recvmsg() unconditional requeue (CVE-2026-23066
+  bsc#1257726).
+- commit c17a357
+
+-------------------------------------------------------------------
+Wed Feb 25 10:37:05 CET 2026 - jgross@suse.com
+
+- KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing
+  memslot (CVE-2025-68810 bsc#1256679).
+- commit 956c9f9
+
+-------------------------------------------------------------------
+Wed Feb 25 10:22:56 CET 2026 - jgross@suse.com
+
+- KVM: Don't clobber irqfd routing type when deassigning irqfd
+  (CVE-2026-23198 bsc#1258321).
+- commit 6b20edc
+
+-------------------------------------------------------------------
+Tue Feb 24 18:02:38 CET 2026 - mwilck@suse.com
+
+- md: suspend array while updating raid_disks via sysfs
+  (CVE-2025-71225, bsc#1258411).
+- commit 4a185e4
+
+-------------------------------------------------------------------
+Tue Feb 24 14:00:39 CET 2026 - ematsumiya@suse.de
+
+- smb: client: fix memory leak in cifs_construct_tcon()
+  (bsc#1255129, CVE-2025-68295).
+- commit cfb334a
+
+-------------------------------------------------------------------
+Tue Feb 24 13:59:40 CET 2026 - ematsumiya@suse.de
+
+- Refresh
+  patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch.
+- commit 3a3c827
+
+-------------------------------------------------------------------
+Tue Feb 24 10:10:58 CET 2026 - tiwai@suse.de
+
+- Refresh and move upstreamed ath12k patch into sorted section
+- commit 6886361
+
+-------------------------------------------------------------------
+Tue Feb 24 10:04:18 CET 2026 - tiwai@suse.de
+
+- HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list
+  (bsc#1258455).
+- commit 3ef2af3
+
+-------------------------------------------------------------------
+Tue Feb 24 01:18:58 CET 2026 - wqu@suse.com
+
+- btrfs: reject new transactions if the fs is fully read-only
+  (bsc#1258464 CVE-2026-23214).
+- commit c00b6f5
+
+-------------------------------------------------------------------
+Tue Feb 24 01:16:23 CET 2026 - wqu@suse.com
+
+- btrfs: send: check for inline extents in
+  range_is_hole_in_parent() (bsc#1258377 CVE-2026-23141).
+- commit eb3646e
+
+-------------------------------------------------------------------
+Mon Feb 23 18:52:41 CET 2026 - mkoutny@suse.com
+
+- block,bfq: fix aux stat accumulation destination (git-fixes).
+- commit 2a3051f
+
+-------------------------------------------------------------------
+Mon Feb 23 16:32:43 CET 2026 - tbogendoerfer@suse.de
+
+- macvlan: observe an RCU grace period in macvlan_common_newlink()
+  error path (CVE-2026-23209 bsc#1258518).
+- bonding: only set speed/duplex to unknown, if getting speed
+  failed (bsc#1253691).
+- macvlan: fix error recovery in macvlan_common_newlink()
+  (CVE-2026-23209 bsc#1258518).
+- i40e: validate ring_len parameter against hardware-specific
+  values (git-fixes).
+- net/mlx5: Initialize events outside devlink lock (git-fixes).
+- commit bbb1b4f
+
+-------------------------------------------------------------------
+Mon Feb 23 14:08:59 CET 2026 - fdmanana@suse.com
+
+- btrfs: fix NULL dereference on root when tracing inode eviction
+  (bsc#1257635 CVE-2025-71184).
+- commit 3fff732
+
+-------------------------------------------------------------------
+Mon Feb 23 14:05:05 CET 2026 - fdmanana@suse.com
+
+- btrfs: tracepoints: use btrfs_root_id() to get the id of a root
+  (bsc#1257635 CVE-2025-71184).
+- commit 4039cd5
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:52 CET 2026 - iivanov@suse.de
+
+- tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible" (git-fixes)
+- commit d36259f
+
+-------------------------------------------------------------------
+Mon Feb 23 12:15:05 CET 2026 - iivanov@suse.de
+
+- tee: fix memory leak in tee_dyn_shm_alloc_helper (git-fixes)
+- commit 7a7323a
+
+-------------------------------------------------------------------
+Mon Feb 23 11:59:06 CET 2026 - iivanov@suse.de
+
+- arm64: Force the use of CNTVCT_EL0 in __delay() (git-fixes)
+- commit 2e8d443
+
+-------------------------------------------------------------------
+Mon Feb 23 11:57:42 CET 2026 - iivanov@suse.de
+
+- arm64: poe: fix stale POR_EL0 values for ptrace (git-fixes)
+- commit e7cd7ba
+
+-------------------------------------------------------------------
+Mon Feb 23 11:56:23 CET 2026 - iivanov@suse.de
+
+- arm64: Fix cleared E0POE bit after cpu_suspend()/resume() (git-fixes)
+- commit ea3dd60
+
+-------------------------------------------------------------------
+Mon Feb 23 09:50:20 CET 2026 - iivanov@suse.de
+
+- PCI: Add PCI_BRIDGE_NO_ALIAS quirk for ASPEED AST1150 (bsc#1258672)
+- commit 63015f7
+
+-------------------------------------------------------------------
+Mon Feb 23 09:49:40 CET 2026 - iivanov@suse.de
+
+- PCI: Add ASPEED vendor ID to pci_ids.h (bsc#1258672)
+- commit c07c434
+
+-------------------------------------------------------------------
+Mon Feb 23 09:43:35 CET 2026 - tiwai@suse.de
+
+- rtc: interface: Alarm race handling should not discard preceding
+  error (git-fixes).
+- commit 142d6d3
+
+-------------------------------------------------------------------
+Sun Feb 22 09:05:06 CET 2026 - tiwai@suse.de
+
+- NTB: ntb_transport: Fix too small buffer for debugfs_name
+  (git-fixes).
+- commit 34f22c7
+
+-------------------------------------------------------------------
+Sat Feb 21 23:06:17 CET 2026 - ailiop@suse.com
+
+- xfs: fix UAF in xchk_btree_check_block_owner (CVE-2026-23223
+  bsc#1258483).
+- commit 0986f41
+
+-------------------------------------------------------------------
+Sat Feb 21 23:03:08 CET 2026 - ailiop@suse.com
+
+- erofs: fix UAF issue for file-backed mounts w/ directio option
+  (CVE-2026-23224 bsc#1258461).
+- commit 543a001
+
+-------------------------------------------------------------------
+Sat Feb 21 09:54:13 CET 2026 - tiwai@suse.de
+
+- spi: wpcm-fiu: Fix potential NULL pointer dereference in
+  wpcm_fiu_probe() (git-fixes).
+- ASoC: rockchip: i2s-tdm: Use param rate if not provided by
+  set_sysclk (git-fixes).
+- ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic
+  init (git-fixes).
+- drm/amd/display: Use same max plane scaling limits for all 64
+  bpp formats (git-fixes).
+- drm/amd/display: Fix out-of-bounds stream encoder index v3
+  (git-fixes).
+- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify
+  (git-fixes).
+- drm/amd/display: Reject cursor plane on DCE when scaled
+  differently than primary (git-fixes).
+- drm/amdkfd: Fix watch_id bounds checking in debug address
+  watch v2 (git-fixes).
+- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
+- drm/amd: Fix hang on amdgpu unload by using
+  pci_dev_is_disconnected() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
+- drm/amdgpu: Use kvfree instead of kfree in
+  amdgpu_gmc_get_nps_memranges() (git-fixes).
+- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()
+  (git-fixes).
+- drm/amdgpu: ensure no_hw_access is visible before MMIO
+  (git-fixes).
+- efi: Fix reservation of unaccepted memory table (git-fixes).
+- commit 05f5344
+
+-------------------------------------------------------------------
+Sat Feb 21 09:46:43 CET 2026 - tiwai@suse.de
+
+- ALSA: usb-audio: Use the right limit for PCM OOB check
+  (CVE-2026-23208 bsc#1258468).
+- ALSA: usb-audio: Prevent excessive number of frames
+  (CVE-2026-23208 bsc#1258468).
+- commit 9c042c7
+
 -------------------------------------------------------------------
 Fri Feb 20 10:41:33 CET 2026 - osalvador@suse.de
 

kernel-zfcpdump.spec

@@ -19,7 +19,7 @@
 
 %define srcversion 6.12
 %define patchversion 6.12.0
-%define git_commit 2763a5a5f373b1987b3ad6adb7f9d107f6175682
+%define git_commit 25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 %define variant %{nil}
 %define compress_modules zstd
 %define compress_vmlinux xz
@@ -42,7 +42,7 @@
 Name:           kernel-zfcpdump
 Version:        6.12.0
 %if 0%{?is_kotd}
-Release:        <RELEASE>.g2763a5a
+Release:        <RELEASE>.g25ac2e0
 %else
 Release:        0
 %endif

series.conf

@@ -9398,6 +9398,7 @@
 	patches.suse/io_uring-account-drain-memory-to-cgroup.patch
 	patches.suse/io_uring-kbuf-account-ring-io_buffer_list-memory.patch
 	patches.suse/btrfs-fix-fsync-of-files-with-no-hard-links-not-persisting.patch
+	patches.suse/btrfs-tracepoints-use-btrfs_root_id-to-get-the-id-of.patch
 	patches.suse/0001-btrfs-enhance-ASSERT-to-take-optional-format-string.patch
 	patches.suse/0002-btrfs-use-verbose-ASSERT-in-volumes.c.patch
 	patches.suse/0003-btrfs-add-debug-build-only-WARN.patch
@@ -12365,6 +12366,8 @@
 	patches.suse/sched-Fix-sched_numa_find_nth_cpu-if-mask-offline.patch
 	patches.suse/soc-qcom-mdt_loader-Deal-with-zero-e_shentsize.patch
 	patches.suse/tee-fix-NULL-pointer-dereference-in-tee_shm_put.patch
+	patches.suse/tee-fix-memory-leak-in-tee_dyn_shm_alloc_helper.patch
+	patches.suse/tee-optee-ffa-fix-a-typo-of-optee_ffa_api_is_compatible.patch
 	patches.suse/arm64-dts-imx8mp-tqma8mpql-fix-LDO5-power-off.patch
 	patches.suse/arm64-dts-imx8mp-Fix-missing-microSD-slot-vqmmc-on-DH-elec.patch
 	patches.suse/arm64-dts-imx8mp-Fix-missing-microSD-slot-vqmmc-on-Data-Mo.patch
@@ -13845,6 +13848,7 @@
 	patches.suse/ALSA-usb-audio-Add-DSD-quirk-for-LEAK-Stereo-230.patch
 	patches.suse/ALSA-usb-audio-fix-uac2-clock-source-at-terminal-par.patch
 	patches.suse/mm-huge_memory-fix-NULL-pointer-deference-when-splitting-f.patch
+	patches.suse/smb-client-fix-memory-leak-in-cifs_construct_tcon-.patch
 	patches.suse/platform-x86-intel-punit_ipc-fix-memory-corruption.patch
 	patches.suse/veth-reduce-XDP-no_direct-return-section-to-fix-race.patch
 	patches.suse/net-phy-mxl-gpy-fix-bogus-error-on-USXGMII-and-integ.patch
@@ -13963,12 +13967,14 @@
 	patches.suse/net-mana-Support-HW-link-state-events.patch
 	patches.suse/wifi-ath10k-move-recovery-check-logic-into-a-new-wor.patch
 	patches.suse/wifi-ath11k-restore-register-window-after-global-res.patch
+	patches.suse/wifi-ath12k-Add-MODULE_FIRMWARE-entries.patch
 	patches.suse/wifi-ath11k-fix-VHT-MCS-assignment.patch
 	patches.suse/wifi-ath11k-fix-peer-HE-MCS-assignment.patch
 	patches.suse/wifi-ath12k-fix-potential-memory-leak-in-ath12k_wow_.patch
 	patches.suse/net-mana-Fix-incorrect-speed-reported-by-debugfs.patch
 	patches.suse/wifi-cw1200-Fix-potential-memory-leak-in-cw1200_bh_r.patch
 	patches.suse/msft-hv-3412-net-mana-Move-hardware-counter-stats-from-per-port-t.patch
+	patches.suse/net-mlx5-Initialize-events-outside-devlink-lock.patch
 	patches.suse/net-phy-adin1100-Fix-software-power-down-ready-condi.patch
 	patches.suse/wifi-mac80211-fix-CMAC-functions-not-handling-errors.patch
 	patches.suse/wifi-rtl8xxxu-Add-USB-ID-2001-3328-for-D-Link-AN3U-r.patch
@@ -14421,6 +14427,7 @@
 	patches.suse/powercap-fix-sscanf-error-return-value-handling.patch
 	patches.suse/ACPI-CPPC-Fix-missing-PCC-check-for-guaranteed_perf.patch
 	patches.suse/ACPI-PCC-Fix-race-condition-by-removing-static-quali.patch
+	patches.suse/KVM-Disallow-toggling-KVM_MEM_GUEST_MEMFD-on-an-exis.patch
 	patches.suse/KVM-nSVM-Clear-exit_code_hi-in-VMCB-when-synthesizin.patch
 	patches.suse/KVM-nSVM-Set-exit_code_hi-to-1-when-synthesizing-SVM.patch
 	patches.suse/drm-amd-display-Fix-scratch-registers-offsets-for-DC.patch
@@ -14497,6 +14504,7 @@
 	patches.suse/net-usb-rtl8150-fix-memory-leak-on-usb_submit_urb-fa.patch
 	patches.suse/Bluetooth-btusb-revert-use-of-devm_kzalloc-in-btusb.patch
 	patches.suse/smc91x-fix-broken-irq-context-in-PREEMPT_RT.patch
+	patches.suse/i40e-validate-ring_len-parameter-against-hardware-sp.patch
 	patches.suse/iavf-fix-off-by-one-issues-in-iavf_config_rss_reg.patch
 	patches.suse/e1000-fix-OOB-in-e1000_tbi_should_accept.patch
 	patches.suse/net-usb-asix-validate-PHY-address-before-use.patch
@@ -14524,19 +14532,23 @@
 	patches.suse/drm-nouveau-dispnv50-Don-t-call-drm_atomic_get_crtc_.patch
 	patches.suse/drm-i915-gem-Zero-initialize-the-eb.vma-array-in-i91.patch
 	patches.suse/x86-microcode-AMD-Fix-Entrysign-revision-check-for-Z.patch
+	patches.suse/block-bfq-fix-aux-stat-accumulation-destination.patch
 	patches.suse/md-raid5-fix-possible-null-pointer-dereferences-in-r.patch
+	patches.suse/md-suspend-array-while-updating-raid_disks-via-sysfs.patch
 	patches.suse/RDMA-core-Check-for-the-presence-of-LS_NLA_TYPE_DGID.patch
 	patches.suse/RDMA-cm-Fix-leaking-the-multicast-GID-table-referenc.patch
 	patches.suse/msft-hv-3433-RDMA-mana_ib-check-cqe-length-for-kernel-CQs.patch
 	patches.suse/RDMA-irdma-avoid-invalid-read-in-irdma_net_event.patch
 	patches.suse/RDMA-core-always-drop-device-refcount-in-ib_del_sub_.patch
 	patches.suse/of-unittest-Fix-memory-leak-in-unittest_data_add.patch
+	patches.suse/btrfs-fix-NULL-dereference-on-root-when-tracing-inod.patch
 	patches.suse/btrfs-fix-deadlock-in-wait_current_trans-due-to-igno.patch
 	patches.suse/btrfs-fix-beyond-EOF-write-handling.patch
 	patches.suse/btrfs-always-detect-conflicting-inodes-when-logging-.patch
 	patches.suse/btrfs-do-not-free-data-reservation-in-fallback-from-.patch
 	patches.suse/btrfs-fix-reservation-leak-in-some-error-paths-when-.patch
 	patches.suse/NFSD-Fix-permission-check-for-read-access-to-executable-only-files.patch
+	patches.suse/nfsd-provide-locking-for-v4_end_grace.patch
 	patches.suse/nfsd-use-correct-loop-termination-in-nfsd4_revoke_states.patch
 	patches.suse/nfsd-check-that-server-is-running-in-unlock_filesystem.patch
 	patches.suse/ALSA-ac97-fix-a-double-free-in-snd_ac97_controller_r.patch
@@ -14587,6 +14599,7 @@
 	patches.suse/libceph-replace-overzealous-BUG_ON-in-osdmap_apply_increme.patch
 	patches.suse/libceph-make-free_choose_arg_map-resilient-to-partial-allo.patch
 	patches.suse/libceph-return-the-handler-error-from-mon_handle_auth_done.patch
+	patches.suse/arm64-Fix-cleared-E0POE-bit-after-cpu_suspend-resume.patch
 	patches.suse/erofs-don-t-bother-with-s_stack_depth-increasing-for-now.patch
 	patches.suse/erofs-fix-file-backed-mounts-no-longer-working-on-EROFS-pa.patch
 	patches.suse/docs-ABI-sysfs-devices-soc-Fix-swapped-sample-values.patch
@@ -14610,10 +14623,12 @@
 	patches.suse/mm-page_alloc-make-percpu_pagelist_high_fraction-reads-loc.patch
 	patches.suse/efi-cper-Fix-cper_bits_to_str-buffer-handling-and-re.patch
 	patches.suse/pNFS-Fix-a-deadlock-when-returning-a-delegation-during-open.patch
+	patches.suse/NFS-Fix-a-deadlock-involving-nfs_release_folio.patch
 	patches.suse/pnfs-flexfiles-Fix-memory-leak-in-nfs4_ff_alloc_deviceid_node.patch
 	patches.suse/pnfs-blocklayout-Fix-memory-leak-in-bl_parse_scsi.patch
 	patches.suse/ALSA-hda-cirrus_scodec_test-Fix-incorrect-setup-of-g.patch
 	patches.suse/ALSA-hda-cirrus_scodec_test-Fix-test-suite-name.patch
+	patches.suse/ALSA-usb-audio-Prevent-excessive-number-of-frames.patch
 	patches.suse/ASoC-simple-card-utils-Check-device-node-before-over.patch
 	patches.suse/ASoC-codecs-wsa883x-fix-unnecessary-initialisation.patch
 	patches.suse/ASoC-codecs-wsa881x-fix-unnecessary-initialisation.patch
@@ -14636,6 +14651,7 @@
 	patches.suse/drm-nouveau-disp-nv50-Set-lock_core-in-curs507a_prep.patch
 	patches.suse/nvme-tcp-fix-NULL-pointer-dereferences-in-nvmet_tcp_.patch
 	patches.suse/btrfs-release-path-before-iget_failed-in-btrfs_read_.patch
+	patches.suse/btrfs-send-check-for-inline-extents-in-range_is_hole.patch
 	patches.suse/i2c-riic-Move-suspend-handling-to-NOIRQ-phase.patch
 	patches.suse/usb-dwc3-Check-for-USB4-IP_NAME.patch
 	patches.suse/usb-core-add-USB_QUIRK_NO_BOS-for-devices-that-hang-.patch
@@ -14680,12 +14696,14 @@
 	patches.suse/mm-hugetlb-fix-excessive-IPI-broadcasts-when-unshari.patch
 	patches.suse/of-platform-Use-default-match-table-for-firmware.patch
 	patches.suse/of-fix-reference-count-leak-in-of_alias_scan.patch
+	patches.suse/btrfs-reject-new-transactions-if-the-fs-is-fully-rea.patch
 	patches.suse/leds-led-class-Only-Add-LED-to-leds_list-when-it-is-.patch
 	patches.suse/vsock-virtio-Coalesce-only-linear-skb.patch
 	patches.suse/net-usb-dm9601-remove-broken-SR9700-support.patch
 	patches.suse/selftests-net-fib-onlink-tests-Convert-to-use-namespaces-b.patch
 	patches.suse/gue-Fix-skb-memleak-with-inner-IP-protocol-0.patch
 	patches.suse/Revert-nfc-nci-Add-the-inconsistency-check-between-t.patch
+	patches.suse/rxrpc-Fix-recvmsg-unconditional-requeue.patch
 	patches.suse/can-gs_usb-gs_usb_receive_bulk_callback-unanchor-URL.patch
 	patches.suse/can-ems_usb-ems_usb_read_bulk_callback-fix-URB-memor.patch
 	patches.suse/can-kvaser_usb-kvaser_usb_read_bulk_callback-fix-URB.patch
@@ -14724,6 +14742,7 @@
 	patches.suse/ALSA-ctxfi-Fix-potential-OOB-access-in-audio-mixer-h.patch
 	patches.suse/ALSA-hda-realtek-Fix-headset-mic-for-TongFang-X6AR55.patch
 	patches.suse/ALSA-usb-audio-Fix-use-after-free-in-snd_usb_mixer_f.patch
+	patches.suse/ALSA-usb-audio-Use-the-right-limit-for-PCM-OOB-check.patch
 	patches.suse/ALSA-hda-realtek-ALC269-fixup-for-Lenovo-Yoga-Book-9.patch
 	patches.suse/gpio-cdev-Correct-return-code-on-memory-allocation-f.patch
 	patches.suse/regmap-maple-free-entry-on-mas_store_gfp-failure.patch
@@ -14819,6 +14838,8 @@
 	patches.suse/platform-x86-amd-pmc-Add-quirk-for-MECHREVO-Wujie-15.patch
 	patches.suse/platform-x86-classmate-laptop-Add-missing-NULL-point.patch
 	patches.suse/platform-x86-hp-bioscfg-Skip-empty-attribute-names.patch
+	patches.suse/KVM-Don-t-clobber-irqfd-routing-type-when-deassignin.patch
+	patches.suse/macvlan-fix-error-recovery-in-macvlan_common_newlink.patch
 	patches.suse/net-usb-r8152-fix-resume-reset-deadlock.patch
 	patches.suse/wifi-iwlwifi-mvm-pause-TCM-on-fast-resume.patch
 	patches.suse/Revert-drm-nouveau-disp-Set-drm_mode_config_funcs.at.patch
@@ -14852,12 +14873,16 @@
 	patches.suse/i3c-dw-Fix-memory-leak-in-dw_i3c_master_i2c_xfers.patch
 	patches.suse/tpm-tpm_i2c_infineon-Fix-locality-leak-on-get_burstc.patch
 	patches.suse/tpm-st33zp24-Fix-missing-cleanup-on-get_burstcount-e.patch
+	patches.suse/erofs-fix-UAF-issue-for-file-backed-mounts-w-directio-opti.patch
+	patches.suse/xfs-fix-UAF-in-xchk_btree_check_block_owner.patch
+	patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch
 	patches.suse/ACPICA-Fix-NULL-pointer-dereference-in-acpi_ev_addre.patch
 	patches.suse/PM-wakeup-Handle-empty-list-in-wakeup_sources_walk_s.patch
 	patches.suse/PM-sleep-wakeirq-harden-dev_pm_clear_wake_irq-agains.patch
 	patches.suse/OPP-Return-correct-value-in-dev_pm_opp_get_level.patch
 	patches.suse/thermal-of-Fix-reference-leak-in-thermal_of_cm_looku.patch
 	patches.suse/thermal-intel-x86_pkg_temp_thermal-Handle-invalid-te.patch
+	patches.suse/arm64-poe-fix-stale-POR_EL0-values-for-ptrace.patch
 	patches.suse/Documentation-mailbox-mbox_chan_ops.flush-is-optiona.patch
 	patches.suse/crypto-qat-fix-parameter-order-used-in-ICP_QAT_FW_CO.patch
 	patches.suse/crypto-qat-fix-warning-on-adf_pfvf_pf_proto.c.patch
@@ -14981,6 +15006,8 @@
 	patches.suse/PCI-Check-parent-for-NULL-in-of_pci_bus_release_doma.patch
 	patches.suse/PCI-Initialize-RCB-from-pci_configure_device.patch
 	patches.suse/PCI-ACPI-Restrict-program_hpx_type2-to-AER-bits.patch
+	patches.suse/PCI-Add-ASPEED-vendor-ID-to-pci_ids.h.patch
+	patches.suse/PCI-Add-PCI_BRIDGE_NO_ALIAS-quirk-for-ASPEED-AST1150.patch
 	patches.suse/Revert-PCI-IOV-Add-PCI-rescan-remove-locking-when-en.patch
 	patches.suse/PCI-IOV-Fix-race-between-SR-IOV-enable-disable-and-h.patch
 	patches.suse/PCI-P2PDMA-Release-per-CPU-pgmap-ref-when-vm_insert_.patch
@@ -15002,6 +15029,7 @@
 	patches.suse/wifi-ath9k-debug.h-fix-kernel-doc-bad-lines-and-stru.patch
 	patches.suse/wifi-ath9k-fix-kernel-doc-warnings-in-common-debug.h.patch
 	patches.suse/wifi-ath10k-sdio-add-missing-lock-protection-in-ath1.patch
+	patches.suse/bonding-only-set-speed-duplex-to-unknown-if-getting-.patch
 	patches.suse/nfc-hci-shdlc-Stop-timers-and-work-before-freeing-co.patch
 	patches.suse/serial-caif-fix-use-after-free-in-caif_serial-ldisc_.patch
 	patches.suse/rapidio-replace-rio_free_net-with-kfree-in-rio_scan_.patch
@@ -15100,7 +15128,26 @@
 	patches.suse/ACPI-CPPC-Fix-remaining-for_each_possible_cpu-to-use.patch
 	patches.suse/atm-fore200e-fix-use-after-free-in-tasklets-during-d.patch
 	patches.suse/net-usb-catc-enable-basic-endpoint-checking.patch
+	patches.suse/macvlan-observe-an-RCU-grace-period-in-macvlan_commo.patch
 	patches.suse/net-nfc-nci-Fix-parameter-validation-for-packet-data.patch
+	patches.suse/arm64-Force-the-use-of-CNTVCT_EL0-in-__delay.patch
+	patches.suse/efi-Fix-reservation-of-unaccepted-memory-table.patch
+	patches.suse/drm-amdgpu-ensure-no_hw_access-is-visible-before-MMI.patch
+	patches.suse/drm-amdgpu-Fix-memory-leak-in-amdgpu_acpi_enumerate_.patch
+	patches.suse/drm-amdgpu-Use-kvfree-instead-of-kfree-in-amdgpu_gmc.patch
+	patches.suse/drm-amdgpu-Fix-memory-leak-in-amdgpu_ras_init.patch
+	patches.suse/drm-amd-Fix-hang-on-amdgpu-unload-by-using-pci_dev_i.patch
+	patches.suse/drm-i915-acpi-free-_DSM-package-when-no-connectors.patch
+	patches.suse/drm-amdkfd-Fix-watch_id-bounds-checking-in-debug-add.patch
+	patches.suse/drm-amd-display-Reject-cursor-plane-on-DCE-when-scal.patch
+	patches.suse/drm-amdgpu-fix-sync-handling-in-amdgpu_dma_buf_move_.patch
+	patches.suse/drm-amd-display-Fix-out-of-bounds-stream-encoder-ind.patch
+	patches.suse/drm-amd-display-Use-same-max-plane-scaling-limits-fo.patch
+	patches.suse/ASoC-codecs-aw88261-Fix-erroneous-bitmask-logic-in-A.patch
+	patches.suse/ASoC-rockchip-i2s-tdm-Use-param-rate-if-not-provided.patch
+	patches.suse/spi-wpcm-fiu-Fix-potential-NULL-pointer-dereference-.patch
+	patches.suse/NTB-ntb_transport-Fix-too-small-buffer-for-debugfs_n.patch
+	patches.suse/rtc-interface-Alarm-race-handling-should-not-discard.patch
 
 	# mkp/scsi queue
 	patches.suse/scsi-lpfc-Rework-lpfc_sli4_fcf_rr_next_index_get.patch
@@ -15121,9 +15168,6 @@
 	# akpm/mm mm-stable
 	patches.suse/mm-page_alloc-thp-prevent-reclaim-for-__GFP_THISNODE-THP-a.patch
 
-	# git://git.samba.org/sfrench/cifs-2.6.git for-next
-	patches.suse/smb-client-split-cached_fid-bitfields-to-avoid-shared-byte-RMW-rac.patch
-
 	# out-of-tree patches
 	patches.suse/selftests-run_kselftest.sh-Add-skip-argument-option.patch
 
@@ -15146,9 +15190,9 @@
 
 	patches.suse/powerpc-kexec_file-Add-KEXEC_SIG-support.patch
 +hare	patches.suse/net-dcb-check-for-detached-device-before-executing-c.patch
-	patches.suse/wifi-ath12k-Add-MODULE_FIRMWARE-entries.patch
 	patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch
 	patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch
+	patches.suse/HID-apple-Add-EPOMAKER-TH87-to-the-non-apple-keyboar.patch
 
 	########################################################
 	# kbuild/module infrastructure fixes

source-timestamp

@@ -1,3 +1,3 @@
-2026-02-21 00:00:11 +0000
+2026-02-27 00:00:12 +0000
-GIT Revision: 2763a5a5f373b1987b3ad6adb7f9d107f6175682
+GIT Revision: 25ac2e03f5e8b876dcffaab3b0c49960d83f2aab
 GIT Branch: SL-16.0