The Apache OpenNLP team is pleased to announce the release of version 1.9.5
of Apache OpenNLP.

The Apache OpenNLP library is a machine learning based toolkit for the
processing of natural language text. It supports the most common NLP tasks,
such as tokenization, sentence segmentation, part-of-speech tagging, named
entity extraction, chunking, and parsing.

The OpenNLP 1.9.5 binary and source distributions are available for
download from our download page: https://opennlp.apache.org/download.html

The OpenNLP library is distributed by Maven Central as well. See the Maven
Dependency page for more details:
https://opennlp.apache.org/maven-dependency.html

Changes in this version:

This is a maintenance release of the 1.9.x line addressing several security
vulnerabilities affecting Apache Lucene 8.x and Solr 8.x which depend on
OpenNLP 1.9.x:

- OPENNLP-1819: Align DictionaryEntryPersistor XML parsing with XmlUtil
helper
- OPENNLP-1820: Restrict ExtensionLoader to allowlisted package prefixes
- OPENNLP-1821: Prevent OutOfMemory due to huge array allocation
- OPENNLP-1826: Fix for XML parser security options
- OPENNLP-1835: Tolerate unsupported XML parser security options

For a complete list of fixed bugs and improvements please see the
RELEASE_NOTES file included in the distribution.

The Apache OpenNLP Team

Reply via email to