Created attachment 199990 [details]
CVEs fixed are the top 9 from https://www.cabextract.org.uk/libmspack/#vulns
Pending (requires) VuXML entry
A commit references this bug:
Date: Tue Dec 11 08:44:00 UTC 2018
New revision: 487227
Update to 0.9.1alpha
Submitted by: Henry David Bartholomew
Re-open for VuXML entry and MFH
what is the current status?
Does ports-secteam have to be active here?
VuXML entries were not added for this (0.9.1) or previous releases
The last libsmpack VuXML entry was <vuln vid="cc7548ef-06e1-11e5-8fda-002590263bf5"> added <entry>2015-05-31</entry> for version < 0.5
This leaves 10 CVE's (security vulnerabilities) not reported to users (per https://www.cabextract.org.uk/libmspack/#vulns)
Over to ports-secteam, no maintainer response since 2018-12-14
VuXML entries for latest and previous version vulnerabilities (At least 10) remains to be added