[Git][security-tracker-team/security-tracker][master] Add references for CVE-2026-42027/apache-opennlp

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
257162f8 by Salvatore Bonaccorso at 2026-05-05T14:21:30+02:00
Add references for CVE-2026-42027/apache-opennlp

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -243,6 +243,9 @@ CVE-2026-42027 (Arbitrary Class Instantiation via Model Manifest in Apache OpenN
 	- apache-opennlp <unfixed>
 	NOTE: https://www.openwall.com/lists/oss-security/2026/05/01/20
 	NOTE: https://issues.apache.org/jira/browse/OPENNLP-1820
+	NOTE: https://github.com/apache/opennlp/pull/1021
+	NOTE: Fixed by: https://github.com/apache/opennlp/commit/6da32a6e72c0436074afc77de5db8da8b3b3f972 (opennlp-3.0.0-M3)
+	NOTE: Fixed by: https://github.com/apache/opennlp/commit/44a02a7eeb17fdde62a69ed79e92c5074013cadd (opennlp-2.5.9)
 CVE-2026-41927 (WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) contains a stac ...)
 	NOT-FOR-US: WDR201A WiFi Extender
 CVE-2026-41926 (WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) contains an OS  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/257162f886e2f54238fc86b4bee1cd6ffaff7e1f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/257162f886e2f54238fc86b4bee1cd6ffaff7e1f
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260505/a7e66770/attachment.htm>