Register | Log in

twisted

Choose email to subscribe with

general

source: twisted (main)
version: 20.3.0-3
maintainer: Debian Python Team (DMD)
uploaders: Matthias Klose [DMD]
arch: all any
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 14.0.2-3
o-o-sec: 14.0.2-3+deb8u2
oldstable: 16.6.0-2
old-bpo: 18.7.0-2~bpo9+2
stable: 18.9.0-3
stable-bpo: 18.9.0-8~bpo10+1
testing: 20.3.0-3
unstable: 20.3.0-3

versioned links

14.0.2-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
14.0.2-3+deb8u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
16.6.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
18.7.0-2~bpo9+2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
18.9.0-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
18.9.0-8~bpo10+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
20.3.0-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

python3-twisted
python3-twisted-bin
python3-twisted-bin-dbg
twisted-doc (1 bugs: 0, 0, 1, 0)

action needed

Debci reports failed tests high

unstable: fail (log)
The tests ran in 0:05:41
Last run: 2020-10-23 17:41:24 UTC
Previous status: fail

testing: fail (log)
The tests ran in 0:05:45
Last run: 2020-10-25 03:35:18 UTC
Previous status: fail

Created: 2019-03-09 Last update: 2020-10-28 23:37

lintian reports 3 errors and 14 warnings high

Lintian reports 3 errors and 14 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2020-09-21 Last update: 2020-10-22 04:34

4 ignored security issues in stretch low

There are 4 open security issues in stretch.

4 issues skipped by the security teams:

CVE-2019-12387: In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF.
CVE-2019-12855: In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.
CVE-2020-10108: In Twisted Web through 19.10.0, there was an HTTP request splitting vulnerability. When presented with two content-length headers, it ignored the first header. When the second content-length value was set to zero, the request body was interpreted as a pipelined request.
CVE-2020-10109: In Twisted Web through 19.10.0, there was an HTTP request splitting vulnerability. When presented with a content-length and a chunked encoding header, the content-length took precedence and the remainder of the request body was interpreted as a pipelined request.

Please fix them.

Created: 2019-06-11 Last update: 2020-10-25 07:31

4 ignored security issues in buster low

There are 4 open security issues in buster.

4 issues skipped by the security teams:

CVE-2019-12387: In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF.
CVE-2019-12855: In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.
CVE-2020-10108: In Twisted Web through 19.10.0, there was an HTTP request splitting vulnerability. When presented with two content-length headers, it ignored the first header. When the second content-length value was set to zero, the request body was interpreted as a pipelined request.
CVE-2020-10109: In Twisted Web through 19.10.0, there was an HTTP request splitting vulnerability. When presented with a content-length and a chunked encoding header, the content-length took precedence and the remainder of the request body was interpreted as a pipelined request.

Please fix them.

Created: 2019-06-11 Last update: 2020-10-25 07:31

news

[2020-10-25] twisted 20.3.0-3 MIGRATED to testing (Debian testing watch)
[2020-10-25] twisted 20.3.0-3 MIGRATED to testing (Debian testing watch)
[2020-10-19] Accepted twisted 20.3.0-3 (source) into unstable (Colin Watson)
[2020-10-14] Accepted twisted 20.3.0-2 (source) into unstable (Andrej Shadura) (signed by: Andrew Shadura)
[2020-04-12] twisted 18.9.0-11 MIGRATED to testing (Debian testing watch)
[2020-04-02] twisted 18.9.0-10 MIGRATED to testing (Debian testing watch)
[2020-04-02] Accepted twisted 18.9.0-11 (source) into unstable (Sandro Tosi)
[2020-03-30] Accepted twisted 18.9.0-8~bpo10+1 (all amd64 source) into buster-backports, buster-backports (Debian FTP Masters) (signed by: Andrew Shadura)
[2020-03-27] Accepted twisted 18.9.0-10 (source) into unstable (Andrej Shadura) (signed by: Andrew Shadura)
[2020-03-26] Accepted twisted 18.9.0-9 (source) into unstable (Andrej Shadura) (signed by: Andrew Shadura)
[2020-03-26] twisted 18.9.0-8 MIGRATED to testing (Debian testing watch)
[2020-03-23] Accepted twisted 20.3.0-1 (source) into experimental (Andrej Shadura) (signed by: Andrew Shadura)
[2020-03-23] Accepted twisted 18.9.0-8 (source) into unstable (Andrej Shadura) (signed by: Andrew Shadura)
[2020-03-23] Accepted twisted 18.9.0-7 (source) into unstable (Andrej Shadura) (signed by: Andrew Shadura)
[2020-03-19] Accepted twisted 14.0.2-3+deb8u2 (source all amd64) into oldoldstable (Chris Lamb)
[2020-03-17] Accepted twisted 14.0.2-3+deb8u1 (source all amd64) into oldoldstable (Chris Lamb)
[2020-03-03] twisted 18.9.0-6 MIGRATED to testing (Debian testing watch)
[2020-01-09] Accepted twisted 18.9.0-6 (source) into unstable (Matthias Klose)
[2019-11-07] Accepted twisted 18.9.0-5 (source) into unstable (Balint Reczey)
[2019-10-27] Accepted twisted 19.10.0~rc1-1 (source) into experimental (Matthias Klose)
[2019-10-19] Accepted twisted 18.9.0-4 (source) into unstable (Matthias Klose)
[2019-01-20] Accepted twisted 18.7.0-2~bpo9+2 (all amd64 source) into stretch-backports (Andrej Shadura)
[2018-12-10] twisted 18.9.0-3 MIGRATED to testing (Debian testing watch)
[2018-12-07] Accepted twisted 18.9.0-3 (source) into unstable (Balint Reczey)
[2018-12-06] Accepted twisted 18.9.0-2 (source) into unstable (Balint Reczey)
[2018-12-05] Accepted twisted 18.9.0-1 (source) into unstable (Balint Reczey)
[2018-10-05] twisted 18.7.0-3 MIGRATED to testing (Debian testing watch)
[2018-10-02] Accepted twisted 18.7.0-3 (source) into unstable (Mattia Rizzolo)
[2018-09-29] Accepted twisted 18.7.0-2~bpo9+1 (source) into stretch-backports (Andrej Shadura)
[2018-09-29] Accepted twisted 18.4.0-2~bpo9+2 (source) into stretch-backports (Andrej Shadura)

1
2

bugs [bug history graph]

all: 12
RC: 0
I&N: 11
M&W: 1
F&P: 0
patch: 0

links

homepage
lintian (3, 14)
buildd: logs, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 18.9.0-11
25 bugs (1 patch)

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing