twisted 18.9.0-6ubuntu1 source package in Ubuntu
Changelog
twisted (18.9.0-6ubuntu1) focal; urgency=medium
* SECURITY UPDATE: incorrect URI and HTTP method validation
- debian/patches/CVE-2019-12387.patch: prevent CRLF injections in
src/twisted/web/_newclient.py, src/twisted/web/client.py,
src/twisted/web/test/injectionhelpers.py,
src/twisted/web/test/test_agent.py,
src/twisted/web/test/test_webclient.py.
- CVE-2019-12387
* SECURITY UPDATE: incorrect cert validation in XMPP support
- debian/patches/CVE-2019-12855-*.patch: upstream patches to implement
certificate checking.
- CVE-2019-12855
* SECURITY UPDATE: HTTP/2 denial of service issues
- debian/patches/CVE-2019-951x.patch: buffer outbound control frames
and timeout invalid clients in src/twisted/web/_http2.py,
src/twisted/web/error.py, src/twisted/web/http.py,
src/twisted/web/test/test_http.py,
src/twisted/web/test/test_http2.py.
- CVE-2019-9511
- CVE-2019-9514
- CVE-2019-9515
* SECURITY UPDATE: request smuggling attacks
- debian/patches/CVE-2020-1010x-pre1.patch: refactor to reduce
duplication in src/twisted/web/test/test_http.py.
- debian/patches/CVE-2020-1010x.patch: fix several request smuggling
attacks in src/twisted/web/http.py,
src/twisted/web/test/test_http.py.
- CVE-2020-10108
- CVE-2020-10109
-- Marc Deslauriers <email address hidden> Thu, 12 Mar 2020 09:35:26 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| twisted_18.9.0.orig.tar.bz2 | 2.9 MiB | 294be2c6bf84ae776df2fc98e7af7d6537e1c5e60a46d33c3ce2a197677da395 |
| twisted_18.9.0-6ubuntu1.debian.tar.xz | 40.7 KiB | 0d3ae6c4aca8a82c1d0bddf7da38a5a007541679b9190f74e766421476cfc45b |
| twisted_18.9.0-6ubuntu1.dsc | 3.6 KiB | 7c57f1fc80beffd496f3b7947527ab0c180f01f650031d575ad20a12b49957f4 |
Available diffs
- diff from 18.9.0-6build1 to 18.9.0-6ubuntu1 (23.6 KiB)
Binary packages built by this source
- python-twisted: No summary available for python-twisted in ubuntu focal.
No description available for python-twisted in ubuntu focal.
- python-twisted-bin: No summary available for python-twisted-bin in ubuntu focal.
No description available for python-twisted-bin in ubuntu focal.
- python-twisted-bin-dbg: No summary available for python-twisted-bin-dbg in ubuntu focal.
No description available for python-
twisted- bin-dbg in ubuntu focal.
- python-twisted-conch: No summary available for python-twisted-conch in ubuntu focal.
No description available for python-
twisted- conch in ubuntu focal.
- python-twisted-core: No summary available for python-twisted-core in ubuntu focal.
No description available for python-twisted-core in ubuntu focal.
- python-twisted-mail: No summary available for python-twisted-mail in ubuntu focal.
No description available for python-twisted-mail in ubuntu focal.
- python-twisted-names: No summary available for python-twisted-names in ubuntu focal.
No description available for python-
twisted- names in ubuntu focal.
- python-twisted-news: No summary available for python-twisted-news in ubuntu focal.
No description available for python-twisted-news in ubuntu focal.
- python-twisted-runner: No summary available for python-twisted-runner in ubuntu focal.
No description available for python-
twisted- runner in ubuntu focal.
- python-twisted-runner-dbg: No summary available for python-twisted-runner-dbg in ubuntu focal.
No description available for python-
twisted- runner- dbg in ubuntu focal.
- python-twisted-web: No summary available for python-twisted-web in ubuntu focal.
No description available for python-twisted-web in ubuntu focal.
- python-twisted-words: No summary available for python-twisted-words in ubuntu focal.
No description available for python-
twisted- words in ubuntu focal.
- python3-twisted: Event-based framework for internet applications
It includes a web server, a telnet server, a multiplayer RPG engine, a
generic client and server for remote object access, and APIs for creating
new protocols.
- python3-twisted-bin: Event-based framework for internet applications
It includes a web server, a telnet server, a multiplayer RPG engine, a
generic client and server for remote object access, and APIs for creating
new protocols.
- python3-twisted-bin-dbg: Event-based framework for internet applications (debug extension)
It includes a web server, a telnet server, a multiplayer RPG engine, a
generic client and server for remote object access, and APIs for creating
new protocols.
.
This package contains the extension built for the Python debug interpreter.
- twisted-doc: Official documentation of Twisted
This contains various HOWTOs and overviews in various formats
.
Twisted is an event-based framework for internet applications.
It includes a web server, a telnet server, a multiplayer RPG engine, a
generic client and server for remote object access, and APIs for creating
new protocols.
