The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * A use-after-free in cls_route filter implementation may lead to privilege escalation * Information leak in scsi_ioctl * A kernel-info-leak issue in pfkey_register * RetBleed Arbitrary Speculative Code Execution with Return Instructions * Branch Type Confusion * RetBleed Arbitrary Speculative Code Execution with Return Instructions For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fix: * Add s390_iommu_aperture kernel parameter * Blackscreen and hangup after resume from hibernate or S3 with DFGX WX3200 * Update NVME subsystem with bug fixes and minor changes * Fix parsing of nw_proto for IPv6 fragments *vmcore failed, _exitcode:139 error observed while capturing vmcore during fadump after memory remove. incomplete vmcore is captured. * "disable_policy" is ignored for addresses configured on a down interface * Backport request for new cpufreq.default_governor kernel command line parameter * Panics in mpt3sas mpt3sas_halt_firmware if mpt3sas_fwfault_debug=1 enabled when poweroff issued to server * IOMMU/DMA update for 8.7 * Update Broadcom Emulex lpfc driver for RHEL8.7 with bug fixes * Incorrect Socket Core per socket reported by lscpu command. * Panic in ch_release due to NULL device pointer, backport upstream fix * pyverbs-tests fail over qede IW HCAs on test_query_rc_qp * qedi shutdown handler hangs upon reboot * cache link_info for ethtool * Important iavf bug fixes * Hibernate crash with Aquantia 2.5/5 Gb LAN card * While using PTimekeeper the qede driver produces excessive log messages * general protection fault handling rpc_xprt.timer * Not enough device MSI-X vectors * Atlantic driver panic on wakeup after hybernate * Memory leak in vxlan_xmit_one * Missing hybernate/resume fixes Enhancement: * Update smartpqi driver to latest upstream Second Set of Patches * qed/qede/qedr - driver updates to latest upstream * Update qedi driver to latest upstream * Update qedf driver to latest upstream * Include the support for new NVIDIA Mobile GFX GA103 on ADL Gen Laptops * Need to enable hpilo to support new HPE RL300 Gen11 for ARM