Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/twisted@18.9.0-7?distro=trixie
purl pkg:deb/debian/twisted@18.9.0-7?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (4)
Vulnerability Summary Aliases
VCID-7d7z-nhf1-kyhc In Twisted Web through 19.10.0, there was an HTTP request splitting vulnerability. When presented with a content-length and a chunked encoding header, the content-length took precedence and the remainder of the request body was interpreted as a pipelined request. CVE-2020-10109
GHSA-p5xh-vx83-mxcj
PYSEC-2020-260
VCID-szfx-665h-w3eb In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections. CVE-2019-12855
GHSA-65rm-h285-5cc5
PYSEC-2019-129
VCID-vcw1-fzw7-43f5 In Twisted Web through 19.10.0, there was an HTTP request splitting vulnerability. When presented with two content-length headers, it ignored the first header. When the second content-length value was set to zero, the request body was interpreted as a pipelined request. CVE-2020-10108
GHSA-h96w-mmrf-2h6v
PYSEC-2020-259
VCID-zx5n-czhy-6qgu In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF. CVE-2019-12387
GHSA-6cc5-2vg4-cc7m
PYSEC-2019-128

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T12:58:27.834124+00:00 Debian Importer Fixing VCID-zx5n-czhy-6qgu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:46:53.135236+00:00 Debian Importer Fixing VCID-vcw1-fzw7-43f5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:02:16.826365+00:00 Debian Importer Fixing VCID-7d7z-nhf1-kyhc https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:28:57.284229+00:00 Debian Importer Fixing VCID-szfx-665h-w3eb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T08:54:47.185087+00:00 Debian Importer Fixing VCID-zx5n-czhy-6qgu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:02:05.027802+00:00 Debian Importer Fixing VCID-vcw1-fzw7-43f5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:29:37.245430+00:00 Debian Importer Fixing VCID-7d7z-nhf1-kyhc https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:04:27.325982+00:00 Debian Importer Fixing VCID-szfx-665h-w3eb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:55:37.943756+00:00 Debian Importer Fixing VCID-7d7z-nhf1-kyhc https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:37.896057+00:00 Debian Importer Fixing VCID-vcw1-fzw7-43f5 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:37.847443+00:00 Debian Importer Fixing VCID-szfx-665h-w3eb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:55:37.798921+00:00 Debian Importer Fixing VCID-zx5n-czhy-6qgu https://security-tracker.debian.org/tracker/data/json 38.1.0