stackhpc · priteau · Jun 26, 2026 · Jun 26, 2026 · Jun 26, 2026
@@ -1,8 +1,8 @@
 ---
 # Overcloud host image versioning tags
 # These images must be in SMS, since they are used by our AIO CI runners
-stackhpc_rocky_9_overcloud_host_image_version: 2025.1-20260618T132327
-stackhpc_rocky_9_overcloud_host_image_version_aarch64: 2025.1-20260420T162634
+stackhpc_rocky_9_overcloud_host_image_version: 2025.1-20260626T202339
+stackhpc_rocky_9_overcloud_host_image_version_aarch64: 2025.1-20260626T202339
 stackhpc_rocky_10_overcloud_host_image_version: 2025.1-20260618T132327
 stackhpc_rocky_10_overcloud_host_image_version_aarch64: 2025.1-20260617T085955
 stackhpc_ubuntu_noble_overcloud_host_image_version: 2025.1-20260618T132327
@@ -154,6 +154,24 @@ stackhpc_pulp_repo_rocky_9_7_highavailability_version: 20260514T220209
 stackhpc_pulp_repo_rocky_9_7_security_aarch64_version: 20260519T222921
 stackhpc_pulp_repo_rocky_9_7_security_source_version: 20260520T222157
 stackhpc_pulp_repo_rocky_9_7_security_version: 20260520T215442
+stackhpc_pulp_repo_rocky_9_8_appstream_aarch64_version: 20260625T233838
+stackhpc_pulp_repo_rocky_9_8_appstream_source_version: 20260625T235829
+stackhpc_pulp_repo_rocky_9_8_appstream_version: 20260625T232331
+stackhpc_pulp_repo_rocky_9_8_baseos_aarch64_version: 20260625T233838
+stackhpc_pulp_repo_rocky_9_8_baseos_source_version: 20260625T235829
+stackhpc_pulp_repo_rocky_9_8_baseos_version: 20260626T000246
+stackhpc_pulp_repo_rocky_9_8_crb_aarch64_version: 20260625T233838
+stackhpc_pulp_repo_rocky_9_8_crb_source_version: 20260531T220752
+stackhpc_pulp_repo_rocky_9_8_crb_version: 20260625T232331
+stackhpc_pulp_repo_rocky_9_8_extras_aarch64_version: 20260528T223707
+stackhpc_pulp_repo_rocky_9_8_extras_source_version: 20260528T220844
+stackhpc_pulp_repo_rocky_9_8_extras_version: 20260528T220059
+stackhpc_pulp_repo_rocky_9_8_highavailability_aarch64_version: 20260624T225110
+stackhpc_pulp_repo_rocky_9_8_highavailability_source_version: 20260624T223310
+stackhpc_pulp_repo_rocky_9_8_highavailability_version: 20260624T215731
+stackhpc_pulp_repo_rocky_9_8_security_aarch64_version: 20260605T230645
+stackhpc_pulp_repo_rocky_9_8_security_source_version: 20260605T225017
+stackhpc_pulp_repo_rocky_9_8_security_version: 20260606T214954
 stackhpc_pulp_repo_rocky_9_sig_security_common_aarch64_version: 20260305T225932
 stackhpc_pulp_repo_rocky_9_sig_security_common_source_version: 20260305T224636
 stackhpc_pulp_repo_rocky_9_sig_security_common_version: 20260305T222525

@@ -208,8 +208,8 @@ stackhpc_pulp_distribution_deb_production: >-
 
 # Whether to sync Rocky Linux 9 packages.
 stackhpc_pulp_sync_rocky_9: "{{ os_distribution == 'rocky' and os_release == '9' }}"
-# Rocky 9 minor version number. Supported values: 6, 7. Default is 7
-stackhpc_pulp_repo_rocky_9_minor_version: '7'
+# Rocky 9 minor version number. Supported values: 6, 7, 8. Default is 8.
+stackhpc_pulp_repo_rocky_9_minor_version: '8'
 # Rocky 9 Snapshot versions. The defaults use the appropriate version from
 # pulp-repo-versions.yml for the selected minor release.
 

@@ -0,0 +1,21 @@
+---
+features:
+  - |
+    Adds support for Rocky Linux 9.8 host packages.
+  - |
+    9.8 is now the default release for Rocky Linux 9.
+issues:
+  - |
+    DOCA OFED is not yet supported in Rocky Linux 9.8. Consider setting
+    ``stackhpc_pulp_repo_rocky_9_minor_version`` to ``'7'`` if using OFED is
+    mandatory.
+security:
+  - |
+    Rocky Linux 9.8 addresses many recent Linux vulnerabilities:
+
+    * CVE-2026-31431 (Copy Fail)
+    * CVE-2026-43284 (Dirty Frag)
+    * CVE-2026-46331 (pedit COW)
+    * CVE-2026-46333 (ptrace flaw)
+    * CVE-2026-23111 (nf_tables bug)
+    * CVE-2026-46243 (CIFSwitch)