- Add CVE fixes:
  + glib2-CVE-2026-1484.patch (bsc#1257355 CVE-2026-1484
    glgo#GNOME/glib!4979).
  + glib2-CVE-2026-1485.patch (bsc#1257354 CVE-2026-1485
    glgo#GNOME/glib!4981).
  + glib2-CVE-2026-1489.patch (bsc#1257353 CVE-2026-1489
    glgo#GNOME/glib!4984).

- memalign-overflow-check.patch: memalign: reinstate alignment overflow
  check (CVE-2026-0861, bsc#1256766, BZ #33796)
- nss-dns-getnetbyaddr.patch: resolv: Fix NSS DNS backend for getnetbyaddr
  (CVE-2026-0915, bsc#1256822, BZ #33802)
- nptl-optimize-trylock.patch: nptl: Optimize trylock for high cache
  contention workloads (bsc#1256437, BZ #33704)
- wordexp-wrde-reuse.patch: posix: Reset wordexp_t fields with WRDE_REUSE
  (CVE-2025-15281, bsc#1257005, BZ #33814)

- Security fix [bsc#1257396, CVE-2026-24882]
  - gpg2: stack-based buffer overflow in TPM2 PKDECRYPT for TPM-backed RSA and ECC keys
  - Added gnupg-CVE-2026-24882.patch

- Security fix: [bsc#1256389] (gpg.fail/filename)
  * GnuPG Accepts Path Separators and Path Traversals in Literal Data "Filename" Field
  * Add gnupg-accepts-path-separators-literal-data.patch

- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP
  allocations (bsc#1254447 bsc#1253087).
- commit e90ec28

- bpf/selftests: test_select_reuseport_kern: Remove unused header
  (bsc#1257603).
- commit 3124f7b

- smb: client: short-circuit in open_cached_dir_by_dentry()
  if !dentry (git-fixes).
- commit 82d6911

- smb: client: ensure open_cached_dir_by_dentry() only returns
  valid cfid (git-fixes).
- commit d1feafe

- smb: client: split cached_fid bitfields to avoid shared-byte
  RMW races (bsc#1250748,bsc#1257154).
- commit e7ce4ba

- scripts/python/git_sort/git_sort.yaml: add cifs for-next repository
- commit 0d24c51

- smb: improve directory cache reuse for readdir operations
  (bsc#1252712).
- commit 20c0243

- smb: client: remove unused fid_lock (git-fixes).
- commit ed3cf07

- smb: client: update cfid->last_access_time in
  open_cached_dir_by_dentry() (git-fixes).
- commit 1962196

- cifs: add new field to track the last access time of cfid
  (git-fixes).
- commit 7328aa8

- smb: change return type of cached_dir_lease_break() to bool
  (git-fixes).
- commit da8604d

- ipv6: Fix use-after-free in inet6_addr_del() (CVE-2026-23010
  bsc#1257332).
- commit 0f213a3

- libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (CVE-2025-68284 bsc#1255377).
- commit 16880ae

- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)
- commit b3a8e60

- Update
  patches.suse/ALSA-hda-Fix-missing-pointer-check-in-hda_component_.patch
  (git-fixes CVE-2025-40097 bsc#1252900).
- Update
  patches.suse/ASoC-stm32-sai-fix-OF-node-leak-on-probe.patch
  (git-fixes CVE-2025-71081 bsc#1256609).
- Update
  patches.suse/KEYS-trusted-Fix-a-memory-leak-in-tpm2_load_cmd.patch
  (git-fixes CVE-2025-71147 bsc#1257158).
- Update
  patches.suse/btrfs-fix-adding-block-group-to-a-reclaim-list-and-t.patch
  (git-fixes CVE-2024-42103 bsc#1228490).
- Update
  patches.suse/btrfs-fix-invalid-inode-pointer-dereferences-during-.patch
  (git-fixes CVE-2025-38243 bsc#1246184).
- Update
  patches.suse/drm-stm-ltdc-fix-late-dereference-check.patch
  (jsc#PED-3527 jsc#PED-5475 jsc#PED-6068 jsc#PED-6070
  jsc#PED-6116 jsc#PED-6120 jsc#PED-5065 jsc#PED-5477 jsc#PED-5511
  jsc#PED-6041 jsc#PED-6069 jsc#PED-6071 CVE-2023-53714
  bsc#1254465).
- Update
  patches.suse/drm-ttm-Avoid-NULL-pointer-deref-for-evicted-BOs.patch
  (git-fixes CVE-2025-71083 bsc#1256610).
- Update
  patches.suse/ftrace-Also-allocate-and-copy-hash-for-reading-of-filter-f.patch
  (bsc#1250032 CVE-2025-39813 CVE-2025-39689 bsc#1249307).
- Update
  patches.suse/hwmon-w83791d-Convert-macros-to-functions-to-avoid-T.patch
  (git-fixes CVE-2025-71111 bsc#1256728).
- Update
  patches.suse/ipmi-Rework-user-message-limit-handling.patch
  (git-fixes CVE-2025-40202 bsc#1253451).
- Update
  patches.suse/media-adv7842-Avoid-possible-out-of-bounds-array-acc.patch
  (git-fixes CVE-2025-71136 bsc#1256759).
- Update
  patches.suse/media-dvb-usb-dtv5100-fix-out-of-bounds-in-dtv5100_i.patch
  (git-fixes CVE-2025-68819 bsc#1256664).
- Update
  patches.suse/media-vidtv-initialize-local-pointers-upon-transfer-.patch
  (git-fixes CVE-2025-68808 bsc#1256682).
- Update
  patches.suse/perf-x86-intel-Fix-crash-in-icl_update_topdown_event.patch
  (git-fixes CVE-2025-38322 bsc#1246447).
- Update
  patches.suse/platform-chrome-cros_ec_ishtp-Fix-UAF-after-unbindin.patch
  (git-fixes CVE-2025-68804 bsc#1256617).
- Update
  patches.suse/powerpc-64s-slb-Fix-SLB-multihit-issue-during-SLB-preload.patch
  (bac#1236022 ltc#211187 CVE-2025-71078 bsc#1256616).
- Update
  patches.suse/smb-client-fix-warning-when-reconnecting-channel.patch
  (git-fixes CVE-2025-38379 bsc#1247030).
- Update
  patches.suse/tcp_bpf-Call-sk_msg_free-when-tcp_bpf_send_verdict-f.patch
  (bsc#1250705 CVE-2025-39913).
- Update
  patches.suse/trace-fgraph-Fix-the-warning-caused-by-missing-unregister-.patch
  (bsc#1248211 CVE-2025-38539 CVE-2025-39829 bsc#1250082).
- Update
  patches.suse/usb-dwc3-fix-fault-at-system-suspend-if-device-was-a.patch
  (git-fixes CVE-2024-53070 bsc#1233563).
- Update
  patches.suse/usb-typec-ucsi-glink-fix-off-by-one-in-connector_sta.patch
  (git-fixes CVE-2024-53149 bsc#1234842).
- Update
  patches.suse/usb-xhci-Fix-invalid-pointer-dereference-in-Etron-wo.patch
  (git-fixes CVE-2025-37813 bsc#1242909).
- Update
  patches.suse/x86-microcode-AMD-Fix-__apply_microcode_amd-s-return.patch
  (bsc#1256528 CVE-2025-22047 bsc#1241437).
- commit fbc3d71

- macvlan: fix possible UAF in macvlan_forward_source()
  (CVE-2026-23001 bsc#1257232).
- commit bcf0129

- btrfs: do not strictly require dirty metadata threshold for
  metadata  writepages (stable-fixes).
- commit b83c55a

- scripts: obsapi: Support URL trailing / in oscrc
- commit 596ed59

- scripts: uploader: Handle missing upstream in is_pr_open
- commit e7d7408

- net/sched: sch_qfq: do not free existing class in
  qfq_change_class() (CVE-2026-22999 bsc#1257236).
- commit d911768

- ipv6: BUG() in pskb_expand_head() as part of
  calipso_skbuff_setattr() (CVE-2025-71085 bsc#1256623).
- commit 35a165f

- scripts: uploader: Fix no change condition for _maintainership.json
- commit 792d98c

- net: tcp: allow zero-window ACK update the window (bsc#1254767).
- commit b6299d5

- scripts: uploader: Only reset branch when there is no open PR
  Resetting the branch closes any PR which is disruptive.
  With project repositories that get a lot of changes this would reset too
  often if reset was enabled causing unmergeable PRs.
  Yet it is necessary to reset to be able to get up-to-date state for a
  new PR.
  With this branch reset can be enabled for maintainership update.
- commit 60e8156

- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).
- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
- remove an Intel CPU model change which is already part of the base kernel
- remove a bpf CVE change which is already part of the base kernel
- commit 6def8a1

- x86: make page fault handling disable interrupts properly
  (git-fixes).
- commit e28ac6a

- iommu: disable SVA when CONFIG_X86 is set (CVE-2025-71089
  bsc#1256612).
- commit 74dac8b

- net: hns3: add VLAN id validation before using (CVE-2025-71112
  bsc#1256726).
- net/handshake: duplicate handshake cancellations leak socket
  (CVE-2025-68775 bsc#1256665).
- commit 5f03ae0

- mptcp: fix a race in mptcp_pm_del_add_timer() (CVE-2025-40257
  bsc#1254842).
- commit 83400eb

- SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token
  in gss_read_proxy_verf (CVE-2025-71120 bsc#1256779).
- commit 400a381

- scsi: sg: Do not sleep in atomic context (CVE-2025-40259
  bsc#1254845).
- commit 386a47a

- ice: use netif_get_num_default_rss_queues() (bsc#1247712).
- commit eb0fac0

- ipvs: fix ipv4 null-ptr-deref in route error path
  (CVE-2025-68813 bsc#1256641).
- commit 238038b

- libceph: fix potential use-after-free in have_mon_and_osd_map() (CVE-2025-68285 bsc#1255401).
- commit fdc5baf

- sched: Increase sched_tick_remote timeout (bsc#1254510).
- commit 87d4295

- Sync version 3.51.2 from Factory:
  * CVE-2025-7709, bsc#1254670: Integer Overflow in FTS5 Extension
  * bsc#1248586: Fix icu-enabled build.

- Name libsystemd-{shared,core} based on the major version of systemd and the
  package release number (bsc#1228081 bsc#1256427)
  This way, both the old and new versions of the shared libraries will be
  present during the update. This should prevent issues during package updates
  when incompatible changes are introduced in the new versions of the shared
  libraries.

- Import commit 75eab961ea843dc161707d4af0789b018d499676
  - 8bbac1d508 detect-virt: bare-metal GCE only for x86 and i386 (bsc#1254293)

- Import commit 5caaa71f4a7b00e6a6ceb396d08486af73687d45
  9ecd162284 timer: rebase last_trigger timestamp if needed
  cd4a9103ef timer: rebase the next elapse timestamp only if timer didn't already run
  c3f4407e97 timer: don't run service immediately after restart of a timer (bsc#1254563)
  05bcfe3295 test: check the next elapse timer timestamp after deserialization
  fe8f656975 test: restarting elapsed timer shouldn't trigger the corresponding service

- Reintroduce systemd-network as a transitional dummy package containing no
  files (bsc#1254202)
  The contents of this package were split into two independent packages:
  systemd-networkd and systemd-resolved. However, the initial replacement caused
  both network services to be disabled. Consequently, the original package has
  been restored as an empty transitional package to prevent the disabling of the
  services. It can be safely removed once the update is complete.

- Import commit 00ba3646e6cb3ce40bb3de3e92f93ebec0adce6d
  e4dd315b6c units: don't force the loading of the loop and dm_mod modules in systemd-repart.service (bsc#1248356)
  b58e72215a units: add dep on systemd-logind.service by user@.service
  97ceca445c detect-virt: add bare-metal support for GCE (bsc#1244449)

- CVE-2026-0990: call stack overflow leading to application crash
  due to infinite recursion in `xmlCatalogXMLResolveURI` (bsc#1256807, bsc#1256811)
  * Add patch libxml2-CVE-2026-0990.patch
- CVE-2026-0992: excessive resource consumption when processing XML
  catalogs due to exponential behavior when handling `<nextCatalog>` elements (bsc#1256808, bsc#1256809, bsc#1256812)
  * Add patch libxml2-CVE-2026-0992.patch
- CVE-2025-8732: infinite recursion in catalog parsing functions when processing malformed SGML catalog files (bsc#1247858, bsc#1247850)
  * Add patch libxml2-CVE-2025-8732.patch

- CVE-2026-1757: memory leak in the `xmllint` interactive shell (bsc#1257593, bsc#1257594, bsc#1257595)
  * Add patch libxml2-CVE-2026-1757.patch

- CVE-2025-10911: use-after-free with key data stored cross-RVT (bsc#1250553)
  * Add patch libxml2-CVE-2025-10911.patch

- CVE-2026-0989: call stack exhaustion leading to application crash
  due to RelaxNG parser not limiting the recursion depth when
  resolving `<include>` directives (bsc#1256804, bsc#1256805, bsc#1256810)
  * Add patch libxml2-CVE-2026-0989.patch
  * https://gitlab.gnome.org/GNOME/libxml2/-/merge_requests/374

- Add python36-certifi provides/obsoletes to enable SLE-12 ->
  SLE-15 migration, bsc#1233012

- Add python36-idna provides/obsoletes to enable SLE-12 ->
  SLE-15 migration, bsc#1233012

- Add python36-packaging provides/obsoletes to enable SLE-12 ->
  SLE-15 migration, bsc#1233012

- Add python36-pycparser provides/obsoletes to enable SLE-12 ->
  SLE-15 migration, bsc#1233012

- Add python36-py provides/obsoletes to enable SLE-12 ->
  SLE-15 migration, bsc#1233012

- Add python36- provides/obsoletes to enable SLE-12 ->
  SLE-15 migration, bsc#1233012

- Add python36-six provides/obsoletes to enable SLE-12 ->
  SLE-15 migration, bsc#1233012

- Update to version 15.6.14:
  * 80-hotplug-cpu-mem.rules: remount tmpfs on "online" uevents
  (bsc#1254264)
  * udev: use systemd service to remount tmpfs (bsc#1253679)