[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for apache-opennlp issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue May 5 21:30:17 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2dd3e2c4 by Salvatore Bonaccorso at 2026-05-05T22:29:44+02:00
Add Debian bug reference for apache-opennlp issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -418,7 +418,7 @@ CVE-2026-42809 (Apache Polaris can issue broad temporary ("vended") storage cred
CVE-2026-42796 (Arelle before 2.39.10 contains an unauthenticated remote code executio ...)
NOT-FOR-US: Arelle
CVE-2026-42440 (OOM Denial of Service via Unbounded Array Allocation in Apache OpenNLP ...)
- - apache-opennlp <unfixed>
+ - apache-opennlp <unfixed> (bug #1135782)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/01/21
NOTE: https://issues.apache.org/jira/browse/OPENNLP-1821
NOTE: https://github.com/apache/opennlp/pull/1022
@@ -518,7 +518,7 @@ CVE-2026-42052 (Beets is the media library management system. Prior to version 2
- beets <unfixed> (bug #1135779)
NOTE: https://github.com/beetbox/beets/security/advisories/GHSA-3gxm-wfjx-m847
CVE-2026-42027 (Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP Ext ...)
- - apache-opennlp <unfixed>
+ - apache-opennlp <unfixed> (bug #1135782)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/01/20
NOTE: https://issues.apache.org/jira/browse/OPENNLP-1820
NOTE: https://github.com/apache/opennlp/pull/1021
@@ -547,7 +547,7 @@ CVE-2026-41471 (Easy PayPal Events & Tickets plugin for WordPress versions 1.3 a
CVE-2026-40797 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2026-40682 (XML External Entity (XXE) via Unsanitized Dictionary Parsing in Apache ...)
- - apache-opennlp <unfixed>
+ - apache-opennlp <unfixed> (bug #1135782)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/01/19
NOTE: https://issues.apache.org/jira/browse/OPENNLP-1819
NOTE: https://github.com/apache/opennlp/pull/1019
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2dd3e2c454df52e82458e38d385b57d0482290c8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2dd3e2c454df52e82458e38d385b57d0482290c8
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260505/6dd9f84b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list