# nltk CVEs with no fix available upstream
# Tracked: https://github.com/nltk/nltk/issues
# Review when nltk releases a patch

# nltk: Denial of Service via unauthenticated remote shutdown
CVE-2026-33231

# nltk: Arbitrary file overwrite and creation via path traversal in XML
CVE-2026-33236
