[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for apache-opennlp issues

Tue, 05 May 2026 13:30:28 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
2dd3e2c4 by Salvatore Bonaccorso at 2026-05-05T22:29:44+02:00
Add Debian bug reference for apache-opennlp issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -418,7 +418,7 @@ CVE-2026-42809 (Apache Polaris can issue broad temporary 
("vended") storage cred
 CVE-2026-42796 (Arelle before 2.39.10 contains an unauthenticated remote code 
executio ...)
        NOT-FOR-US: Arelle
 CVE-2026-42440 (OOM Denial of Service via Unbounded Array Allocation in Apache 
OpenNLP ...)
-       - apache-opennlp <unfixed>
+       - apache-opennlp <unfixed> (bug #1135782)
        NOTE: https://www.openwall.com/lists/oss-security/2026/05/01/21
        NOTE: https://issues.apache.org/jira/browse/OPENNLP-1821
        NOTE: https://github.com/apache/opennlp/pull/1022
@@ -518,7 +518,7 @@ CVE-2026-42052 (Beets is the media library management 
system. Prior to version 2
        - beets <unfixed> (bug #1135779)
        NOTE: 
https://github.com/beetbox/beets/security/advisories/GHSA-3gxm-wfjx-m847
 CVE-2026-42027 (Arbitrary Class Instantiation via Model Manifest in Apache 
OpenNLP Ext ...)
-       - apache-opennlp <unfixed>
+       - apache-opennlp <unfixed> (bug #1135782)
        NOTE: https://www.openwall.com/lists/oss-security/2026/05/01/20
        NOTE: https://issues.apache.org/jira/browse/OPENNLP-1820
        NOTE: https://github.com/apache/opennlp/pull/1021
@@ -547,7 +547,7 @@ CVE-2026-41471 (Easy PayPal Events & Tickets plugin for 
WordPress versions 1.3 a
 CVE-2026-40797 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
        NOT-FOR-US: WordPress plugin or theme
 CVE-2026-40682 (XML External Entity (XXE) via Unsanitized Dictionary Parsing 
in Apache ...)
-       - apache-opennlp <unfixed>
+       - apache-opennlp <unfixed> (bug #1135782)
        NOTE: https://www.openwall.com/lists/oss-security/2026/05/01/19
        NOTE: https://issues.apache.org/jira/browse/OPENNLP-1819
        NOTE: https://github.com/apache/opennlp/pull/1019



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2dd3e2c454df52e82458e38d385b57d0482290c8

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2dd3e2c454df52e82458e38d385b57d0482290c8
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to