AZL-47151

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-47151.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-47151

Upstream

CVE-2024-41671

Published

2024-07-29T15:15:15Z

Modified

2026-04-01T05:16:59.173007Z

Summary

CVE-2024-41671 affecting package python-twisted for versions less than 22.10.0-3

Details

Twisted is an event-based framework for internet applications, supporting Python 3.6+. The HTTP 1.0 and 1.1 server provided by twisted.web could process pipelined HTTP requests out-of-order, possibly resulting in information disclosure. This vulnerability is fixed in 24.7.0rc1.

References

https://nvd.nist.gov/vuln/detail/CVE-2024-41671

Affected packages

Azure Linux:3 / python-twisted

Package

Name: python-twisted
Purl: pkg:rpm/azure-linux/python-twisted

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

22.10.0-3

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-47151.json"