I just noticed that lizard is vulnerable to CVE-2018-11498. https://nvd.nist.gov/vuln/detail/CVE-2018-11498
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=ad004d81f7424d69b4a132f6b015e47544f392fe commit ad004d81f7424d69b4a132f6b015e47544f392fe Author: Hiroki Tagato <tagattie@FreeBSD.org> AuthorDate: 2024-01-31 08:03:21 +0000 Commit: Hiroki Tagato <tagattie@FreeBSD.org> CommitDate: 2024-01-31 08:05:13 +0000 archivers/lizard: update to latest GH commit to address security vulnerability PR: 257863 Reported by: decke MFH: 2024Q1 Security: 67c2eb06-5579-4595-801b-30355be24654 archivers/lizard/Makefile | 5 +++-- archivers/lizard/distinfo | 6 +++--- archivers/lizard/pkg-plist | 1 + 3 files changed, 7 insertions(+), 5 deletions(-)
A commit in branch 2024Q1 references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=e1469fc9fc9d5860e92eea4c3fac5bddf0fd17a3 commit e1469fc9fc9d5860e92eea4c3fac5bddf0fd17a3 Author: Hiroki Tagato <tagattie@FreeBSD.org> AuthorDate: 2024-01-31 08:03:21 +0000 Commit: Hiroki Tagato <tagattie@FreeBSD.org> CommitDate: 2024-01-31 08:06:15 +0000 archivers/lizard: update to latest GH commit to address security vulnerability PR: 257863 Reported by: decke MFH: 2024Q1 Security: 67c2eb06-5579-4595-801b-30355be24654 (cherry picked from commit ad004d81f7424d69b4a132f6b015e47544f392fe) archivers/lizard/Makefile | 5 +++-- archivers/lizard/distinfo | 6 +++--- archivers/lizard/pkg-plist | 1 + 3 files changed, 7 insertions(+), 5 deletions(-)
Committed, thanks!