UbuntuUpdates.org

Package "twisted"

Name: twisted

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Event-based framework for internet applications
  • Official documentation of Twisted
Latest version: 24.11.0-1ubuntu0.1
Release: questing (25.10)
Level: security
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "twisted" in Questing

Repository Area Version
base main 24.11.0-1
updates main 24.11.0-1ubuntu0.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 24.11.0-1ubuntu0.1 2026-06-03 18:07:50 UTC

  twisted (24.11.0-1ubuntu0.1) questing-security; urgency=medium

  * SECURITY UPDATE: DNS name decompression denial of service
    - debian/patches/CVE-2026-42304-1.patch: fix denial of service in
      twisted.names mitigation in src/twisted/names/dns.py,
      src/twisted/names/test/test_dns.py.
    - debian/patches/CVE-2026-42304-2.patch: Update src/twisted/names/dns.py.
    - debian/patches/CVE-2026-42304-3.patch: Update
      src/twisted/names/test/test_dns.py.
    - debian/patches/CVE-2026-42304-4.patch: names: Refactor DNS compression
      mitigation in src/twisted/names/dns.py,
      src/twisted/names/newsfragments/12626.bugfix,
      src/twisted/names/test/test_dns.py.
    - debian/patches/CVE-2026-42304-5.patch: names: fix changes in
      src/twisted/names/dns.py, src/twisted/names/test/test_dns.py.
    - debian/patches/CVE-2026-42304-6.patch: Update
      src/twisted/names/newsfragments/12626.bugfix.
    - CVE-2026-42304

 -- Marc Deslauriers <email address hidden> Fri, 22 May 2026 10:57:28 -0400
CVE-2026-42304 Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to 26.4.0rc2, the twisted.names module is vulnerable to


About   -   Send Feedback to @ubuntu_updates