diff --git a/etc/kayobe/pulp-host-image-versions.yml b/etc/kayobe/pulp-host-image-versions.yml index e0b67fe50..b2b925fbf 100644 --- a/etc/kayobe/pulp-host-image-versions.yml +++ b/etc/kayobe/pulp-host-image-versions.yml @@ -1,8 +1,8 @@ --- # Overcloud host image versioning tags # These images must be in SMS, since they are used by our AIO CI runners -stackhpc_rocky_9_overcloud_host_image_version: 2025.1-20260618T132327 -stackhpc_rocky_9_overcloud_host_image_version_aarch64: 2025.1-20260420T162634 +stackhpc_rocky_9_overcloud_host_image_version: 2025.1-20260626T202339 +stackhpc_rocky_9_overcloud_host_image_version_aarch64: 2025.1-20260626T202339 stackhpc_rocky_10_overcloud_host_image_version: 2025.1-20260618T132327 stackhpc_rocky_10_overcloud_host_image_version_aarch64: 2025.1-20260617T085955 stackhpc_ubuntu_noble_overcloud_host_image_version: 2025.1-20260618T132327 diff --git a/etc/kayobe/pulp-repo-versions.yml b/etc/kayobe/pulp-repo-versions.yml index 79263e712..812352ec2 100644 --- a/etc/kayobe/pulp-repo-versions.yml +++ b/etc/kayobe/pulp-repo-versions.yml @@ -154,6 +154,24 @@ stackhpc_pulp_repo_rocky_9_7_highavailability_version: 20260514T220209 stackhpc_pulp_repo_rocky_9_7_security_aarch64_version: 20260519T222921 stackhpc_pulp_repo_rocky_9_7_security_source_version: 20260520T222157 stackhpc_pulp_repo_rocky_9_7_security_version: 20260520T215442 +stackhpc_pulp_repo_rocky_9_8_appstream_aarch64_version: 20260625T233838 +stackhpc_pulp_repo_rocky_9_8_appstream_source_version: 20260625T235829 +stackhpc_pulp_repo_rocky_9_8_appstream_version: 20260625T232331 +stackhpc_pulp_repo_rocky_9_8_baseos_aarch64_version: 20260625T233838 +stackhpc_pulp_repo_rocky_9_8_baseos_source_version: 20260625T235829 +stackhpc_pulp_repo_rocky_9_8_baseos_version: 20260626T000246 +stackhpc_pulp_repo_rocky_9_8_crb_aarch64_version: 20260625T233838 +stackhpc_pulp_repo_rocky_9_8_crb_source_version: 20260531T220752 +stackhpc_pulp_repo_rocky_9_8_crb_version: 20260625T232331 +stackhpc_pulp_repo_rocky_9_8_extras_aarch64_version: 20260528T223707 +stackhpc_pulp_repo_rocky_9_8_extras_source_version: 20260528T220844 +stackhpc_pulp_repo_rocky_9_8_extras_version: 20260528T220059 +stackhpc_pulp_repo_rocky_9_8_highavailability_aarch64_version: 20260624T225110 +stackhpc_pulp_repo_rocky_9_8_highavailability_source_version: 20260624T223310 +stackhpc_pulp_repo_rocky_9_8_highavailability_version: 20260624T215731 +stackhpc_pulp_repo_rocky_9_8_security_aarch64_version: 20260605T230645 +stackhpc_pulp_repo_rocky_9_8_security_source_version: 20260605T225017 +stackhpc_pulp_repo_rocky_9_8_security_version: 20260606T214954 stackhpc_pulp_repo_rocky_9_sig_security_common_aarch64_version: 20260305T225932 stackhpc_pulp_repo_rocky_9_sig_security_common_source_version: 20260305T224636 stackhpc_pulp_repo_rocky_9_sig_security_common_version: 20260305T222525 diff --git a/etc/kayobe/pulp.yml b/etc/kayobe/pulp.yml index 8b2441fa4..5ca119cc1 100644 --- a/etc/kayobe/pulp.yml +++ b/etc/kayobe/pulp.yml @@ -208,8 +208,8 @@ stackhpc_pulp_distribution_deb_production: >- # Whether to sync Rocky Linux 9 packages. stackhpc_pulp_sync_rocky_9: "{{ os_distribution == 'rocky' and os_release == '9' }}" -# Rocky 9 minor version number. Supported values: 6, 7. Default is 7 -stackhpc_pulp_repo_rocky_9_minor_version: '7' +# Rocky 9 minor version number. Supported values: 6, 7, 8. Default is 8. +stackhpc_pulp_repo_rocky_9_minor_version: '8' # Rocky 9 Snapshot versions. The defaults use the appropriate version from # pulp-repo-versions.yml for the selected minor release. diff --git a/releasenotes/notes/rl9.8-8deda6361c5ecba0.yaml b/releasenotes/notes/rl9.8-8deda6361c5ecba0.yaml new file mode 100644 index 000000000..cf2fab381 --- /dev/null +++ b/releasenotes/notes/rl9.8-8deda6361c5ecba0.yaml @@ -0,0 +1,21 @@ +--- +features: + - | + Adds support for Rocky Linux 9.8 host packages. + - | + 9.8 is now the default release for Rocky Linux 9. +issues: + - | + DOCA OFED is not yet supported in Rocky Linux 9.8. Consider setting + ``stackhpc_pulp_repo_rocky_9_minor_version`` to ``'7'`` if using OFED is + mandatory. +security: + - | + Rocky Linux 9.8 addresses many recent Linux vulnerabilities: + + * CVE-2026-31431 (Copy Fail) + * CVE-2026-43284 (Dirty Frag) + * CVE-2026-46331 (pedit COW) + * CVE-2026-46333 (ptrace flaw) + * CVE-2026-23111 (nf_tables bug) + * CVE-2026-46243 (CIFSwitch)