| Release | Version |
|---|---|
| bullseye | 3.0.1-1 |
| bookworm | 4.0.0-1 |
| trixie | 4.1.2-2 |
| forky | 4.2.1-2 |
| sid | 4.2.1-2 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2026-44546 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | daphne before 4.2.2 reconstructs a raw HTTP request from Twisted's par ... |
| CVE-2026-44545 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | daphne before 4.2.2 did not pass maxFramePayloadSize or maxMessagePayl ... |