Debian Package Tracker

general

source: twisted (main)
version: 18.9.0-6
maintainer: Debian Python Modules Team (archive) (DMD)
uploaders: Matthias Klose [DMD]
arch: all any
std-ver: 4.4.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 14.0.2-3
oldstable: 16.6.0-2
old-bpo: 18.7.0-2~bpo9+2
stable: 18.9.0-3
testing: 18.9.0-3
unstable: 18.9.0-6
exp: 19.10.0~rc1-1

versioned links

14.0.2-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
16.6.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
18.7.0-2~bpo9+2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
18.9.0-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
18.9.0-6: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
19.10.0~rc1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

python-twisted (6 bugs: 0, 6, 0, 0)
python-twisted-bin
python-twisted-bin-dbg
python-twisted-conch (1 bugs: 0, 1, 0, 0)
python-twisted-core (2 bugs: 1, 1, 0, 0)
python-twisted-mail
python-twisted-names (1 bugs: 0, 1, 0, 0)
python-twisted-news
python-twisted-runner
python-twisted-runner-dbg
python-twisted-web
python-twisted-words
python3-twisted (1 bugs: 0, 1, 0, 0)
python3-twisted-bin
python3-twisted-bin-dbg
twisted-doc (1 bugs: 0, 0, 1, 0)

action needed

Debci reports failed tests high

unstable: fail (log)
The tests ran in 0:06:43
Last run: 2020-01-25 06:48:59 UTC
Previous status: fail

testing: fail (log)
The tests ran in 0:06:29
Last run: 2020-02-16 08:31:10 UTC
Previous status: fail

Created: 2019-03-09 Last update: 2020-02-19 17:19

A new upstream version is available: 19.10.0 high

A new upstream version 19.10.0 is available, you should consider packaging it.

Created: 2019-11-08 Last update: 2020-02-19 15:36

The VCS repository is not up to date, push the missing commits. high

vcswatch reports that the current version of the package is not in its VCS.
Either you need to push your commits and/or your tags, or the information about the package's VCS are out of date. A common cause of the latter issue when using the Git VCS is not specifying the correct branch when the packaging is not in the default one (remote HEAD branch), which is usually "master" but can be modified in salsa.debian.org in the project's general settings with the "Default Branch" field). Alternatively the Vcs-Git field in debian/control can contain a "-b <branch-name>" suffix to indicate what branch is used for the Debian packaging.

Created: 2019-02-20 Last update: 2020-02-18 21:35

2 security issues in bullseye high

There are 2 open security issues in bullseye.

2 important issues:

CVE-2019-12855: In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.
CVE-2019-12387: In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF.

Please fix them.

Created: 2019-07-07 Last update: 2020-01-10 09:01

2 security issues in sid high

There are 2 open security issues in sid.

2 important issues:

CVE-2019-12855: In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.
CVE-2019-12387: In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF.

Please fix them.

Created: 2019-06-11 Last update: 2020-01-10 09:01

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2020-01-05 Last update: 2020-02-19 17:13

Depends on packages which need a new maintainer normal

The packages that twisted depends on which need a new maintainer are:

zope.interface (#948811)
- Build-Depends: python-zope.interface-dbg python3-zope.interface
- Depends: python-zope.interface-dbg python-zope.interface python3-zope.interface python3-zope.interface-dbg

Created: 2020-01-13 Last update: 2020-02-19 17:09

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2020-01-15 Last update: 2020-02-19 17:06

2 ignored security issues in buster low

There are 2 open security issues in buster.

2 issues skipped by the security teams:

CVE-2019-12855: In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.
CVE-2019-12387: In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF.

Please fix them.

Created: 2019-06-11 Last update: 2020-01-10 09:01

2 ignored security issues in jessie low

There are 2 open security issues in jessie.

2 issues skipped by the security teams:

CVE-2019-12855: In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.
CVE-2019-12387: In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF.

Please fix them.

Created: 2019-06-11 Last update: 2020-01-10 09:01

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2019-12855: In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.
CVE-2019-12387: In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF.

Please fix them.

Created: 2019-06-11 Last update: 2020-01-10 09:01

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2018-12-07 Last update: 2018-12-07 17:48

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 4.4.1).

Created: 2020-01-21 Last update: 2020-01-21 05:06

testing migrations

excuses:
- Migration status for twisted (18.9.0-3 to 18.9.0-6): BLOCKED: Rejected/violates migration policy/introduces a regression
- Issues preventing migration:
- Updating twisted introduces new bugs: #943963
- Additional info:
- Piuparts tested OK - https://piuparts.debian.org/sid/source/t/twisted.html
- 40 days old (needed 5 days)
- Not considered

news

[rss feed]

[2020-01-09] Accepted twisted 18.9.0-6 (source) into unstable (Matthias Klose)
[2019-11-07] Accepted twisted 18.9.0-5 (source) into unstable (Balint Reczey)
[2019-10-27] Accepted twisted 19.10.0~rc1-1 (source) into experimental (Matthias Klose)
[2019-10-19] Accepted twisted 18.9.0-4 (source) into unstable (Matthias Klose)
[2019-01-20] Accepted twisted 18.7.0-2~bpo9+2 (all amd64 source) into stretch-backports (Andrej Shadura)
[2018-12-10] twisted 18.9.0-3 MIGRATED to testing (Debian testing watch)
[2018-12-07] Accepted twisted 18.9.0-3 (source) into unstable (Balint Reczey)
[2018-12-06] Accepted twisted 18.9.0-2 (source) into unstable (Balint Reczey)
[2018-12-05] Accepted twisted 18.9.0-1 (source) into unstable (Balint Reczey)
[2018-10-05] twisted 18.7.0-3 MIGRATED to testing (Debian testing watch)
[2018-10-02] Accepted twisted 18.7.0-3 (source) into unstable (Mattia Rizzolo)
[2018-09-29] Accepted twisted 18.7.0-2~bpo9+1 (source) into stretch-backports (Andrej Shadura)
[2018-09-29] Accepted twisted 18.4.0-2~bpo9+2 (source) into stretch-backports (Andrej Shadura)
[2018-09-12] Accepted twisted 18.4.0-2~bpo9+1 (source amd64 all) into stretch-backports, stretch-backports (Andrej Shadura)
[2018-08-30] twisted 18.7.0-2 MIGRATED to testing (Debian testing watch)
[2018-08-14] Accepted twisted 18.7.0-2 (source) into unstable (Matthias Klose)
[2018-08-14] Accepted twisted 18.7.0-1 (source) into unstable (Matthias Klose)
[2018-08-13] Accepted twisted 18.4.0-3 (source) into unstable (Andrej Shadura)
[2018-07-18] twisted 18.4.0-2 MIGRATED to testing (Debian testing watch)
[2018-07-03] Accepted twisted 18.4.0-2 (source) into unstable (Matthias Klose)
[2018-06-13] twisted 18.4.0-1 MIGRATED to testing (Debian testing watch)
[2018-05-06] Accepted twisted 18.4.0-1 (source amd64 all) into unstable (Free Ekanayaka)
[2018-04-26] twisted 17.9.0-2 MIGRATED to testing (Debian testing watch)
[2018-04-20] Accepted twisted 17.9.0-2 (source) into unstable (Colin Watson)
[2017-10-02] twisted 17.9.0-1 MIGRATED to testing (Debian testing watch)
[2017-09-26] Accepted twisted 17.9.0-1 (source) into unstable (Matthias Klose)
[2017-09-25] twisted 17.9.0~rc1-1 MIGRATED to testing (Debian testing watch)
[2017-09-19] Accepted twisted 17.9.0~rc1-1 (source) into unstable (Matthias Klose)
[2017-09-09] twisted 17.5.0-2 MIGRATED to testing (Debian testing watch)
[2017-09-04] Accepted twisted 17.5.0-2 (source) into unstable (Free Ekanayaka)

bugs [bug history graph]

all: 16
RC: 1
I&N: 14
M&W: 1
F&P: 0
patch: 0

links

homepage
buildd: logs, exp, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 18.9.0-6
24 bugs (1 patch)