What Are You Looking For?

Sign Up
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-17efd3f2cd
2023-10-24 01:21:22.156597
--------------------------------------------------------------------------------

Name        : folly
Product     : Fedora 38
Version     : 2023.10.16.00
Release     : 1.fc38
URL         : https://github.com/facebook/folly
Summary     : An open-source C++ library developed and used at Facebook
Description :
Folly (acronymed loosely after Facebook Open Source Library) is a library of
C++14 components designed with practicality and efficiency in mind. Folly
contains a variety of core library components used extensively at Facebook. In
particular, it's often a dependency of Facebook's other open source C++ efforts
and place where those projects can share code.

It complements (as opposed to competing against) offerings such as Boost and of
course std. In fact, we embark on defining our own component only when something
we need is either not available, or does not meet the needed performance
profile. We endeavor to remove things from folly if or when std or Boost
obsoletes them.

Performance concerns permeate much of Folly, sometimes leading to designs that
are more idiosyncratic than they would otherwise be (see e.g. PackedSyncPtr.h,
SmallLocks.h). Good performance at large scale is a unifying theme in all of
Folly.

--------------------------------------------------------------------------------
Update Information:

Update Folly stack to the latest 2023.10.16.00 tag  proxygen: Security fix for
CVE-2023-44487
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 17 2023 Michel Lind  - 2023.10.16.00-1
- Update to 2023.10.16.00
* Mon Oct 16 2023 Michel Lind  - 2023.10.09.00-1
- Update to 2023.10.09.00
* Fri Oct  6 2023 Michel Lind  - 2023.09.11.00-3
- Reorganize disabled tests; ungate the flaky tests previously disabled
  only on x86_64
* Thu Oct  5 2023 Remi Collet  - 2023.09.11.00-2
- rebuild for new libsodium
* Mon Sep 11 2023 Michel Lind  - 2023.09.11.00-1
- Update to 2023.09.11.00
* Wed Jul 19 2023 Fedora Release Engineering  - 2023.07.03.00-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2221799 - mcrouter-2023.10.09.00 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2221799
  [ 2 ] Bug #2239431 - proxygen-2023.10.16.00 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2239431
  [ 3 ] Bug #2239594 - wangle-2023.10.16.00 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2239594
  [ 4 ] Bug #2239613 - fb303-2023.10.09.00 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2239613
  [ 5 ] Bug #2239614 - fbthrift-2023.10.09.00 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2239614
  [ 6 ] Bug #2239623 - fizz-2023.10.09.00 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2239623
  [ 7 ] Bug #2239624 - folly-2023.10.09.00 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2239624
  [ 8 ] Bug #2243253 - [Major Incident] CVE-2023-44487 proxygen: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2243253
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-17efd3f2cd' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Fedora 38: folly 2023-17efd3f2cd

October 24, 2023
Update Folly stack to the latest 2023.10.16.00 tag proxygen: Security fix for CVE-2023-44487

Summary

Folly (acronymed loosely after Facebook Open Source Library) is a library of

C++14 components designed with practicality and efficiency in mind. Folly

contains a variety of core library components used extensively at Facebook. In

particular, it's often a dependency of Facebook's other open source C++ efforts

and place where those projects can share code.

It complements (as opposed to competing against) offerings such as Boost and of

course std. In fact, we embark on defining our own component only when something

we need is either not available, or does not meet the needed performance

profile. We endeavor to remove things from folly if or when std or Boost

obsoletes them.

Performance concerns permeate much of Folly, sometimes leading to designs that

are more idiosyncratic than they would otherwise be (see e.g. PackedSyncPtr.h,

SmallLocks.h). Good performance at large scale is a unifying theme in all of

Folly.

Update Information:

Update Folly stack to the latest 2023.10.16.00 tag proxygen: Security fix for CVE-2023-44487

Change Log

* Tue Oct 17 2023 Michel Lind - 2023.10.16.00-1 - Update to 2023.10.16.00 * Mon Oct 16 2023 Michel Lind - 2023.10.09.00-1 - Update to 2023.10.09.00 * Fri Oct 6 2023 Michel Lind - 2023.09.11.00-3 - Reorganize disabled tests; ungate the flaky tests previously disabled only on x86_64 * Thu Oct 5 2023 Remi Collet - 2023.09.11.00-2 - rebuild for new libsodium * Mon Sep 11 2023 Michel Lind - 2023.09.11.00-1 - Update to 2023.09.11.00 * Wed Jul 19 2023 Fedora Release Engineering - 2023.07.03.00-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild

References

[ 1 ] Bug #2221799 - mcrouter-2023.10.09.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2221799 [ 2 ] Bug #2239431 - proxygen-2023.10.16.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239431 [ 3 ] Bug #2239594 - wangle-2023.10.16.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239594 [ 4 ] Bug #2239613 - fb303-2023.10.09.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239613 [ 5 ] Bug #2239614 - fbthrift-2023.10.09.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239614 [ 6 ] Bug #2239623 - fizz-2023.10.09.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239623 [ 7 ] Bug #2239624 - folly-2023.10.09.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239624 [ 8 ] Bug #2243253 - [Major Incident] CVE-2023-44487 proxygen: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2243253

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-17efd3f2cd' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : folly
Product : Fedora 38
Version : 2023.10.16.00
Release : 1.fc38
URL : https://github.com/facebook/folly
Summary : An open-source C++ library developed and used at Facebook

Related News

Security Highlights from KubeCon + CloudNativeCon 2023

Nov 18, 2023

Kubernetes Security on AWS: A Practical Guide

Nov 18, 2023

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

Nov 25, 2023

News

Advisories

HOWTOs

Features

Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap
CISA Issues Urgent Warning Over Active Exploitation of Looney Tunables glibc Bug

About Us

Powered By

Footer Logo