-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2020-8c15928d23 2020-11-25 01:34:42.404045 --------------------------------------------------------------------------------
Name : kernel Product : Fedora 33 Version : 5.9.10 Release : 200.fc33 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package
-------------------------------------------------------------------------------- Update Information:
The 5.9.10 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 23 2020 Justin M. Forbes jforbes@fedoraproject.org - 5.9.10-200 - Linux v5.9.10 - Fix CVE-2020-28941 (rhbz 1899985 1899986) - Fix CVE-2020-4788 (rhbz 1888433 1900437) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1888433 - CVE-2020-4788 kernel: speculation on incompletely validated data on IBM Power9 https://bugzilla.redhat.com/show_bug.cgi?id=1888433 [ 2 ] Bug #1899985 - CVE-2020-28941 kernel: NULL pointer dereference in spk_ttyio_ldisc_close function in drivers/accessibility/speakup/spk_ttyio.c https://bugzilla.redhat.com/show_bug.cgi?id=1899985 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-8c15928d23' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------