The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * A use-after-free in cls_route filter implementation may lead to privilege escalation * Information leak in scsi_ioctl * A kernel-info-leak issue in pfkey_register * RetBleed Arbitrary Speculative Code Execution with Return Instructions * Branch Type Confusion * RetBleed Arbitrary Speculative Code Execution with Return Instructions For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fix: * Add s390_iommu_aperture kernel parameter * Blackscreen and hangup after resume from hibernate or S3 with DFGX WX3200 * Update NVME subsystem with bug fixes and minor changes * Fix parsing of nw_proto for IPv6 fragments * "vmcore failed, _exitcode:139" error observed while capturing vmcore during fadump after memory remove. incomplete vmcore is captured. * "disable_policy" is ignored for addresses configured on a down interface * Backport request for new cpufreq.default_governor kernel command line parameter * Panics in mpt3sas mpt3sas_halt_firmware if mpt3sas_fwfault_debug=1 enabled when poweroff issued to server * IOMMU/DMA update for 8.7 * Update Broadcom Emulex lpfc driver for Rocky Linux8.7 with bug fixes * Incorrect Socket "Core per socket" reported by lscpu command. * Panic in ch_release due to NULL ch-