This is an automated email from the ASF dual-hosted git repository.

HoustonPutman pushed a change to branch production
in repository https://gitbox.apache.org/repos/asf/solr-site.git


    from 8bd722b2f Merge remote-tracking branch 'apache/main' into production
     add 10132d986 SOLR-18288: VEX statements for the April 2026 Apache Log4j 
CVEs
     add f77e1eb55 fix: extend statements to Solr `10.0.0`
     add a82ecbcd3 SOLR-18288: Fix MapMessage family description in 
CVE-2026-34481 VEX
     add 0e33e735a SOLR-18288: Link April 2026 Log4j VEX statements to JIRA 
issue
     add 6c25d0516 Merge pull request #195 from 
vex-generation-toolset/vex/log4j-april-2026
     add 43097c002 With AI support, update the open ended versions to being 
close ended.
     add b1e105daa align this rather generic issue to follow our vex pattern 
more closely
     add 83d7bfa1a this is too undefined, and really isnt a vex file
     add cb5409a43 refine why this jar trips up scanners
     add 19ffc4e6b refine the versions of Solr that vex entries apply to
     add aa45b0686 Potential fix for pull request finding
     add 0a709bbfe we dont need the jira issue
     add 9c8e96141 Merge pull request #193 from epugh/update_vex_status
     add 477d81ba1 add OpenNLP CVE Vex files
     add 8d3cf0f0e provide more accurate state of play message, that will be 
updated again when integrated into solr
     add 9b7cd51ce Potential fix for pull request finding
     add 30ae5da39 Merge branch 'add_opennlp_cve_as_vex' of 
github.com:epugh/solr-site into add_opennlp_cve_as_vex
     add 705f8ddaa Merge pull request #192 from epugh/add_opennlp_cve_as_vex
     add 830f8c47f List all VEX entries in the CVE table with a status tag
     add 6b82b6ee7 we don't need the extra details...
     add f302bc6d9 make sure to only show Vex entries for dependencies, not 
Solr itself, they go in the main security page
     add 2017b3877 Merge pull request #191 from epugh/vex-table-list-all
     add 1843a369e Bump tornado from 6.5.5 to 6.5.7
     add 282e8ad44 Merge pull request #194 from 
apache/dependabot/pip/tornado-6.5.7
     add ad34bfb0a [SOLR-17822] Document non-exploitability of CVE-2025-48924
     add b5cc4981e Merge remote-tracking branch 'upstream/main' into pr/152
     add aa91d0f87 Document commons lang vulnerablity
     add 634dd7e04 Merge pull request #152 from 
ppkarwasz/fix/CVE-2025-48924_commons-lang
     add 84841e7b1 bumped the version we are using
     add 289d27008 Merge pull request #196 from 
epugh/bump_cyclonedx_version_statement
     add 127ea7258 Add docs button to menus and fix operator docs links (#190)
     new 369cc9cd5 Merge remote-tracking branch 'apache/main' into production

The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Summary of changes:
 .../pages/operator/articles/explore-v030-gke.md    |  24 ++--
 content/pages/operator/resources.md                |  22 ++-
 content/pages/security-dependency-cves.md          |   2 +-
 .../operator/news/2021-04-29-v0-3-0-available.md   |   2 +-
 .../operator/news/2021-09-13-v0-4-0-available.md   |   2 +-
 .../operator/news/2021-11-16-v0-5-0-available.md   |   2 +-
 .../operator/news/2022-03-21-v0-5-1-available.md   |   2 +-
 .../operator/news/2023-04-24-v0-7-0-available.md   |   2 +-
 .../operator/news/2023-07-21-v0-7-1-available.md   |   2 +-
 .../operator/news/2023-10-20-v0-8-0-available.md   |   2 +-
 .../operator/news/2024-04-12-v0-8-1-available.md   |   2 +-
 .../operator/news/2025-01-22-v0-9-0-available.md   |   2 +-
 .../operator/news/2025-03-25-v0-9-1-available.md   |   2 +-
 content/solr/vex/2022-12-14-cve-2012-0881.md       |   2 +-
 content/solr/vex/2022-12-14-cve-2012-2098.md       |   2 +-
 content/solr/vex/2022-12-14-cve-2015-5237.md       |   2 +-
 content/solr/vex/2022-12-14-cve-2016-1181.md       |  18 +++
 content/solr/vex/2022-12-14-cve-2016-6809.md       |   4 +-
 content/solr/vex/2022-12-14-cve-2017-14868.md      |   2 +-
 content/solr/vex/2022-12-14-cve-2017-15095.md      |   2 +-
 content/solr/vex/2022-12-14-cve-2018-1000632.md    |   2 +-
 .../solr/vex/2022-12-14-cve-2018-10237-guava.md    |   2 +-
 content/solr/vex/2022-12-14-cve-2018-10237.md      |   2 +-
 content/solr/vex/2022-12-14-cve-2018-8088.md       |   2 +-
 content/solr/vex/2022-12-14-cve-2020-13955.md      |   2 +-
 content/solr/vex/2022-12-14-cve-2020-27223.md      |   2 +-
 content/solr/vex/2022-12-14-cve-2021-33813.md      |   2 +-
 content/solr/vex/2022-12-14-cve-2022-25168.md      |   2 +-
 content/solr/vex/2022-12-14-cve-2022-33980.md      |   2 +-
 content/solr/vex/2022-12-14-cve-2022-42889.md      |   2 +-
 content/solr/vex/2022-12-14-cve-tika-core.md       |  11 --
 content/solr/vex/2022-12-14-cve-velocity-tools.md  |  11 --
 content/solr/vex/2024-01-12-cve-2023-51074.md      |   4 +-
 content/solr/vex/2025-01-26-cve-2025-24814.md      |   2 +-
 content/solr/vex/2025-02-26-cve-2024-6763.md       |   2 +-
 content/solr/vex/2025-07-25-cve-2024-51504.md      |   2 +-
 content/solr/vex/2025-08-04-cve-2025-48924.md      |  11 ++
 content/solr/vex/2026-04-10-cve-2026-34477.md      |  44 ++++++
 content/solr/vex/2026-04-10-cve-2026-34478.md      |  45 ++++++
 content/solr/vex/2026-04-10-cve-2026-34479.md      |  42 ++++++
 content/solr/vex/2026-04-10-cve-2026-34480.md      |  41 ++++++
 content/solr/vex/2026-04-10-cve-2026-34481.md      |  27 ++++
 content/solr/vex/2026-05-04-cve-2026-40682.md      |  56 ++++++++
 content/solr/vex/2026-05-04-cve-2026-42027.md      |  65 +++++++++
 content/solr/vex/2026-05-04-cve-2026-42440.md      |  48 +++++++
 plugins/vex/vex.py                                 |   3 +-
 requirements.txt                                   |  22 +--
 themes/solr/static/css/base.css                    | 151 ++++++++++++++++++---
 themes/solr/static/css/operator.css                |  62 +++++++--
 themes/solr/static/javascript/main.js              |  53 +++-----
 themes/solr/templates/_footer.html                 |   2 +-
 themes/solr/templates/_header.html                 |  27 ++--
 themes/solr/templates/operator/_footer.html        |   2 +-
 themes/solr/templates/operator/_header.html        |   3 +
 themes/solr/templates/operator/features.html       |  18 +--
 .../solr/templates/security-dependency-cves.html   |   8 +-
 56 files changed, 696 insertions(+), 186 deletions(-)
 create mode 100644 content/solr/vex/2022-12-14-cve-2016-1181.md
 delete mode 100644 content/solr/vex/2022-12-14-cve-tika-core.md
 delete mode 100644 content/solr/vex/2022-12-14-cve-velocity-tools.md
 create mode 100644 content/solr/vex/2025-08-04-cve-2025-48924.md
 create mode 100644 content/solr/vex/2026-04-10-cve-2026-34477.md
 create mode 100644 content/solr/vex/2026-04-10-cve-2026-34478.md
 create mode 100644 content/solr/vex/2026-04-10-cve-2026-34479.md
 create mode 100644 content/solr/vex/2026-04-10-cve-2026-34480.md
 create mode 100644 content/solr/vex/2026-04-10-cve-2026-34481.md
 create mode 100644 content/solr/vex/2026-05-04-cve-2026-40682.md
 create mode 100644 content/solr/vex/2026-05-04-cve-2026-42027.md
 create mode 100644 content/solr/vex/2026-05-04-cve-2026-42440.md

Reply via email to