From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id A51A1138331 for ; Fri, 23 Feb 2018 05:34:09 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id A495CE080E; Fri, 23 Feb 2018 05:34:08 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [IPv6:2001:470:ea4a:1:5054:ff:fec7:86e4]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 8629CE080E for ; Fri, 23 Feb 2018 05:34:08 +0000 (UTC) Received: from oystercatcher.gentoo.org (unknown [IPv6:2a01:4f8:202:4333:225:90ff:fed9:fc84]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 485F5335C54 for ; Fri, 23 Feb 2018 05:34:06 +0000 (UTC) Received: from localhost.localdomain (localhost [IPv6:::1]) by oystercatcher.gentoo.org (Postfix) with ESMTP id BF072235 for ; Fri, 23 Feb 2018 05:34:03 +0000 (UTC) From: "Mart Raudsepp" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Mart Raudsepp" Message-ID: <1519363978.a880818f9d0e1f8ae97cd3f94208a48709c032b5.leio@gentoo> Subject: [gentoo-commits] repo/gentoo:master commit in: profiles/ X-VCS-Repository: repo/gentoo X-VCS-Files: profiles/package.mask X-VCS-Directories: profiles/ X-VCS-Committer: leio X-VCS-Committer-Name: Mart Raudsepp X-VCS-Revision: a880818f9d0e1f8ae97cd3f94208a48709c032b5 X-VCS-Branch: master Date: Fri, 23 Feb 2018 05:34:03 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: 7b07bc7a-586c-4697-835c-a4d56b9efa0a X-Archives-Hash: 7b794d741d3548dd24d776068c46bad3 commit: a880818f9d0e1f8ae97cd3f94208a48709c032b5 Author: Mart Raudsepp gentoo org> AuthorDate: Fri Feb 23 05:32:58 2018 +0000 Commit: Mart Raudsepp gentoo org> CommitDate: Fri Feb 23 05:32:58 2018 +0000 URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=a880818f profiles: p.mask net-lib/webkit-gtk SLOT=2 and SLOT=3 for security Bug: https://bugs.gentoo.org/577068 profiles/package.mask | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/profiles/package.mask b/profiles/package.mask index b434750712e..0d29da6bc95 100644 --- a/profiles/package.mask +++ b/profiles/package.mask @@ -29,6 +29,16 @@ #--- END OF EXAMPLES --- +# Mart Raudsepp (23 Feb 2018) +# Old net-libs/webkit-gtk SLOTs have hundreds of known security issues. +# Use the security safe net-libs webkit-gtk SLOT=4 instead via +# libraries and applications ported to gtk3 and webkit2gtk API. +# Masked for removal in 30 days. Bug #577068. +# Please keep this package.mask entry until at least 25th May 2018 for +# extra notification of the security vulnerabilities. +net-libs/webkit-gtk:2 +net-libs/webkit-gtk:3 + # Mart Raudsepp (23 Feb 2018) # Older versions of GnuCash use security vulnerable old webkit-gtk slot. # Use gnucash-2.7.4 or newer instead, but pay attention to the news item: