Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 39: FEDORA-2023-7934802344 Critical: Proxygen DDoS Risk

fedora
Calendar Grey November 3, 2023
Dist Fedora Esm H88
Fedora 39 has released a crucial update targeting a severe vulnerability in proxygen, aimed at bolstering the security of data transmissions.
Update Folly stack to the latest 2023.10.16.00 tag proxygen: Security fix for CVE-2023-44487

Summary

Warp speed Data Transfer is aiming to transfer data between two systems

as fast as possible.

Update Information:

Update Folly stack to the latest 2023.10.16.00 tag proxygen: Security fix for CVE-2023-44487

Topics%20covered

Topics Covered

security advisory fedora security fix critical threat ddos attack proxygen folly stack

Change Log

* Wed Oct 18 2023 Michel Lind - 1.32.1910230^20230711git3b52ef5-2 - Rebuilt for folly 2023.10.16.00 * Wed Sep 13 2023 Michel Lind - 1.32.1910230^20230711git3b52ef5-1 - Update to snapshot from 20230711

References


[ 1 ] Bug #2221799 - mcrouter-2023.10.09.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2221799 [ 2 ] Bug #2239431 - proxygen-2023.10.16.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239431 [ 3 ] Bug #2239594 - wangle-2023.10.16.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239594 [ 4 ] Bug #2239613 - fb303-2023.10.09.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239613 [ 5 ] Bug #2239614 - fbthrift-2023.10.09.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239614 [ 6 ] Bug #2239623 - fizz-2023.10.09.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239623 [ 7 ] Bug #2239624 - folly-2023.10.09.00 is available https://bugzilla.redhat.com/show_bug.cgi?id=2239624 [ 8 ] Bug #2243253 - [Major Incident] CVE-2023-44487 proxygen: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) ...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-7934802344' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: wdt
Product: Fedora 39
Version: 1.32.1910230^20230711git3b52ef5
Release: 2.fc39
URL: https://www.facebook.com/WdtOpenSource
Summary: Warp speed Data Transfer

Topics%20covered

Topics Covered

security advisory fedora security fix critical threat ddos attack proxygen folly stack

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here