CLEANSTART-2026-KV09488 Security fixes for CVE-2026-23865, CVE-2026-23868, CVE-2026-24281, CVE-2026-24308, CVE-2026-34479, CVE-2026-42577, ghsa-355h-qmc2-wpwf, ghsa-3pxv-7cmr-fjr4, ghsa-445c-vh5m-36rj, ghsa-6hg6-v5c8-fphq, ghsa-72hv-8253-57qq, ghsa-h383-gmxw-35v2, ghsa-rwm7-x88c-3g2p, ghsa-w35j-pv5h-q9q9 applied in versions: 9.10.1-r1, 9.10.1-r2

Multiple security vulnerabilities affect the solr package. These issues are resolved in later releases. See references for individual vulnerability details...

CVE-2026-34479 vulnerabilities

Vulnerabilities for packages: druid, pinot, spark, nuxeo, opensearch, kserve-modelmesh, geoserver, pinot-fips, kafka, logstash, logstash-fips, flink, commercial-elasticsearch, akhq, spark-fips, elasticsearch, celeborn, elasticsearch-fips, solr, kafka-fips...

io.github.braully:bpp-cobranca (>=1.0.0 <=1.0.1), org.opencadc:cadc-access-control (>=1.1.21 <=1.1.31) +78 more potentially affected by CVE-2026-34479 via org.apache.logging.log4j:log4j-1.2-api (=3.0.0-beta2)

org.apache.logging.log4j:log4j-1.2-api MAVEN version =3.0.0-beta2 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.logging.log4j:log4j-1.2-api and may be impacted: - io.github.braully:bpp-cobranca =1.0.0, =1.1.21, =1.0.8, =1.2.0, =1.1.10, =1....

CVE-2026-34479

creationtimestamp| type| source ---|---|--- 2026-04-10 16:10:00+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mj5piqe25s2a...