Information on source package twisted

Available versions

Release	Version
jessie	14.0.2-3
jessie (security)	14.0.2-3+deb8u2
stretch	16.6.0-2
buster	18.9.0-3
bullseye	18.9.0-11
sid	18.9.0-11

Open issues

Bug	jessie	stretch	buster	bullseye	sid	Description
CVE-2020-10109	fixed	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	In Twisted Web through 19.10.0, there was an HTTP request splitting vu ...
CVE-2020-10108	fixed	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	In Twisted Web through 19.10.0, there was an HTTP request splitting vu ...
CVE-2019-12855	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP su ...
CVE-2019-12387	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	In Twisted before 19.2.1, twisted.web did not validate or sanitize URI ...

Open unimportant issues

Bug	jessie	stretch	buster	bullseye	sid	Description
CVE-2016-1000111	vulnerable	fixed	fixed	fixed	fixed	Twisted before 16.3.1 does not attempt to address RFC 3875 section 4.1 ...

Resolved issues

Bug	Description
CVE-2014-7143	Python Twisted 14.0 trustRoot is not respected in HTTP client ...

Security announcements

DSA / DLA	Description
DLA-2145-2	twisted - regression update
DLA-2145-1	twisted - security update