twisted 22.1.0-2ubuntu2.3 source package in Ubuntu
Changelog
twisted (22.1.0-2ubuntu2.3) jammy-security; urgency=medium
* SECURITY UPDATE: Parsing of HTTP request headers was found to be
not fully compliant with RFC 7230 specifications, which could
result in HTTP request smuggling for certain multi-server
configurations
- debian/patches/CVE-2022-24801-*.patch: Ensure only permitted characters
are present in Content-Length headers, improve parsing of Chunk Length
values and fix stripping of whitespace in HTTP headers in
src/twisted/web/http.py and src/twisted/web/test/test_http.py
- CVE-2022-24801
-- Ray Veldkamp <email address hidden> Thu, 11 Aug 2022 12:24:30 +1000
Upload details
- Uploaded by:
- Ray Veldkamp
- Uploaded to:
- Jammy
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- python
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| twisted_22.1.0.orig.tar.gz | 3.6 MiB | b7971ec9805b0f80e1dcb1a3721d7bfad636d5f909de687430ce373979d67b61 |
| twisted_22.1.0-2ubuntu2.3.debian.tar.xz | 36.6 KiB | 7e440becc3a7e80b6e185deb02717cfd10b7a9964149eb8482b6513110c8d8a1 |
| twisted_22.1.0-2ubuntu2.3.dsc | 2.5 KiB | 0b925aa5a5ee2006a72f91743fc84b710dd7e856bb27513ddb3fef8137dbde39 |
Available diffs
Binary packages built by this source
- python3-twisted: Event-based framework for internet applications
It includes a web server, a telnet server, a multiplayer RPG engine, a
generic client and server for remote object access, and APIs for creating
new protocols.
- twisted-doc: Official documentation of Twisted
This contains various HOWTOs and overviews in various formats.
.
Twisted is an event-based framework for internet applications.
It includes a web server, a telnet server, a multiplayer RPG engine, a
generic client and server for remote object access, and APIs for creating
new protocols.
