Information on source package php-twig

Available versions

ReleaseVersion
bullseye2.14.3-1+deb11u2
bullseye (security)2.14.3-1+deb11u4
bookworm3.5.1-1+deb12u1
bookworm (security)3.5.1-1+deb12u3
trixie3.20.0-2
trixie (security)3.27.0-0+deb13u1
forky3.27.1-1
sid3.27.1-1

Open issues

BugbullseyebookwormtrixieforkysidDescription
CVE-2026-48805vulnerablevulnerable (no DSA, ignored)fixedfixedfixed
CVE-2026-47732vulnerablevulnerable (no DSA, ignored)fixedfixedfixed
CVE-2026-46638vulnerablevulnerable (no DSA, ignored)fixedfixedfixed
CVE-2026-46637vulnerablefixedfixedfixedfixed
CVE-2026-46636vulnerablevulnerable (no DSA, ignored)fixedfixedfixed
CVE-2026-46635vulnerablevulnerable (no DSA, ignored)fixedfixedfixed
CVE-2026-46633vulnerablefixedfixedfixedfixed
CVE-2026-46629vulnerablefixedfixedfixedfixed
CVE-2026-46628vulnerablefixedfixedfixedfixed
CVE-2025-24374vulnerable (no DSA, ignored)vulnerable (no DSA)fixedfixedfixedTwig is a template language for PHP. When using the ?? operator, outpu ...
CVE-2024-51755vulnerable (no DSA, ignored)vulnerable (no DSA)fixedfixedfixedTwig is a template language for PHP. In a sandbox, an attacker can acc ...

Open unimportant issues

BugbullseyebookwormtrixieforkysidDescription
CVE-2026-46627vulnerablevulnerablefixedfixedfixed

Resolved issues

BugDescription
CVE-2026-48808
CVE-2026-48807
CVE-2026-48806
CVE-2026-47730
CVE-2026-46640
CVE-2026-46639
CVE-2026-46634
CVE-2026-24425Twig versions 2.16.x and 3.9.0 through 3.25.x contain a sandbox bypass ...
CVE-2024-51754Twig is a template language for PHP. In a sandbox, an attacker can cal ...
CVE-2024-45411Twig is a template language for PHP. Under some circumstances, the san ...
CVE-2022-39261Twig is a template language for PHP. Versions 1.x prior to 1.44.7, 2.x ...
CVE-2022-23614Twig is an open source template language for PHP. When in a sandbox mo ...

Security announcements

DSA / DLADescription
DSA-6320-1php-twig - security update
DSA-6311-1php-twig - security update
DLA-4186-1php-twig - security update
DSA-5771-1php-twig - security update
DLA-3888-1php-twig - security update
DSA-5248-1php-twig - security update
DSA-5107-1php-twig - security update
Search for package or bug name: Reporting problems