SECURITY: Fedora 33 Update: kernel-5.9.10-200.fc33
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-8c15928d23
2020-11-25 01:34:42.404045
--------------------------------------------------------------------------------
Name : kernel
Product : Fedora 33
Version : 5.9.10
Release : 200.fc33
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package
--------------------------------------------------------------------------------
Update Information:
The 5.9.10 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 23 2020 Justin M. Forbes - 5.9.10-200
- Linux v5.9.10
- Fix CVE-2020-28941 (rhbz 1899985 1899986)
- Fix CVE-2020-4788 (rhbz 1888433 1900437)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1888433 - CVE-2020-4788 kernel: speculation on incompletely validated data on IBM Power9
https://bugzilla.redhat.com/show_bug.cgi?id=1888433
[ 2 ] Bug #1899985 - CVE-2020-28941 kernel: NULL pointer dereference in spk_ttyio_ldisc_close function in drivers/accessibility/speakup/spk_ttyio.c
https://bugzilla.redhat.com/show_bug.cgi?id=1899985
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-8c15928d23' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
A kernel security update has been released for Fedora 33.
