#################################################################### # # When you add an entry to the top of this file, add your name, the date, and # an explanation of why something is getting masked. Please be extremely # careful not to commit atoms that are not valid, as it can cause large-scale # breakage, especially if it ends up in the daily snapshot. # ## Example: ## ## # Dev E. Loper (28 Jun 2012) ## # Masking these versions until we can get the ## # v4l stuff to work properly again ## =media-video/mplayer-0.90_pre5 ## =media-video/mplayer-0.90_pre5-r1 # # - Best last rites (removal) practices - # Include the following info: # a) reason for masking # b) bug # for the removal (and yes you should have one) # c) date of removal (either the date or "in x days") # ## Example: ## ## # Dev E. Loper (23 May 2015) ## # Masked for removal in 30 days. Doesn't work ## # with new libfoo. Upstream dead, gtk-1, smells ## # funny. (bug #987654) ## app-misc/some-package #--- END OF EXAMPLES --- # Andreas Sturmlechner (03 Dec 2017) # Dead upstreams, depending on dead qt3support/qt4. # Masked for removal in 30 days. Bug #631788 games-board/capicity games-board/kcheckers games-board/qgo games-board/holdingnuts games-board/qcheckers games-emulation/virtualjaguar games-emulation/dboxfe games-kids/cubetest games-kids/crayon-physics games-misc/ggencoder games-misc/qlife games-puzzle/bubble-chains games-puzzle/jag # Andreas Sturmlechner (03 Dec 2017) # Dead upstream, depends on dead qt4. # Masked for removal in 30 days. Bug #639254 x11-misc/qtnotifydaemon # Andreas Sturmlechner (03 Dec 2017) # Dead upstream, depends on dead qt4. # Masked for removal in 30 days. Bug #637098 app-office/qchartdiary # Andreas Sturmlechner (03 Dec 2017) # Dead upstream, depends on dead qt4. # Masked for removal in 30 days. Bug #638688 x11-plugins/qled # Michael Palimaka (02 Dec 2017) # Depends on dead Qt 4. Dead upstream. # Masked for removal in 30 days. Bug #639252. dev-vcs/qsvn # Alexey Shvetsov (01 Dec 2017) # Mask beta gromacs version =sci-chemistry/gromacs-2018_beta* # Andreas Sturmlechner (01 Dec 2017) # Dead upstream, depends on dead kdelibs4/qt4. # Masked for removal in 30 days. Bug #634138 media-gfx/kpovmodeler # Sergey Popov (30 Nov 2017) # Depends on dead Qt4, no release in two years # Masked for removal in 30 days, bug #625110 dev-util/qfsm # Andreas Sturmlechner (30 Nov 2017) # Declared dead upstream. Masked for removal in 30 days. Bug #634138 kde-apps/blogilo kde-apps/jovie kde-apps/kabcclient kde-apps/kaccessible kde-apps/kdepim-kresources kde-apps/kdepim-l10n kde-apps/kdepim-wizards kde-apps/kdepimlibs kde-apps/kdewebdev-meta kde-apps/kfilereplace kde-apps/kioclient kde-apps/klinkstatus kde-apps/knode kde-apps/knotify kde-apps/kppp kde-apps/kremotecontrol kde-apps/ktimetracker kde-apps/ktimezoned kde-apps/libkface kde-apps/libkpgp # Andreas Sturmlechner (30 Nov 2017) # Depends on dead kdepimlibs:4. KF5-based snapshot available. # Masked for removal in 30 days. Bug #634138 app-office/kraft:4 # Andreas Sturmlechner (30 Nov 2017) # Depends on dead kdepimlibs:4. KF5-based snapshot available. # Masked for removal in 30 days. Bug #634138 kde-apps/kopete:4 kde-misc/kopete-antispam kde-misc/kopete-thinklight # Andreas Sturmlechner (30 Nov 2017) # Still depends on dead kdelibs4/Qt3Support/Qt4, no KF5-based release. # Masked for removal in 30 days. Bug #629018 <=dev-util/kdbg-2.9.1 # Andreas Sturmlechner (30 Nov 2017) # Dead upstream, depends on dead kdelibs4/Qt3Support/Qt4. # Masked for removal in 30 days. Bug #634324 games-mud/kmuddy # Andreas Sturmlechner (30 Nov 2017) # Depends on dead kdelibs4/Qt4, no KF5-based release. # Masked for removal in 30 days. Bug #629018 media-gfx/kcoloredit:4 # Andreas Sturmlechner (30 Nov 2017) # Dead upstream, depends on dead kdelibs4/Qt3Support/Qt4. # Masked for removal in 30 days. Bug #629018 kde-misc/krcstat # Andreas Sturmlechner (30 Nov 2017) # Dead upstream, depends on dead Qt3Support/Qt4. # Masked for removal in 30 days. Bug #639244 net-dialup/qtwvdialer # Andreas Sturmlechner (30 Nov 2017) # Dead upstream, depends on dead kdelibs4/Qt3Support/Qt4. # Masked for removal in 30 days. Bug #629018 x11-themes/bespin # Jonas Stein (29 Nov 2017) # The old yafaray-0.1.1 depends on qt4 and has bugs we can not fix. # (bug #321169) and (bug #595684) # Users of yafaray may be interested in >=yafaray-3.3.0 (bug #639046) # and its fork TheBounty (#639158) which require completely new ebuilds. # # The old and for now the last version in the tree is # masked for removal on 2018-02-30 =media-gfx/yafaray-0.1.1 # Michał Górny (28 Nov 2017) # Replaced by split packages. Please install one of: # - app-emulation/wine-vanilla (the only choice for stable) # - app-emulation/wine-staging # - app-emulation/wine-d3d9 # - app-emulation/wine-any # For more information, please read the news item: # https://www.gentoo.org/support/news-items/2017-04-10-split-and-slotted-wine.html # If you really need the old ebuilds, you can use the 'wine' repository. # Removal in 30 days. app-emulation/wine # Jonas Stein (26 Nov 2017) # The latest version of this LaTeX package is part of # dev-texlive/texlive-latexextra (bug #421881) # Masked for removal on 2017-12-30 dev-tex/isotope # Matt Turner (25 Nov 2017) # Unmaintained upstream. Masked for removal in 30 days. # Bug #606132. x11-drivers/xf86-input-acecad x11-drivers/xf86-input-aiptek x11-drivers/xf86-input-fpit x11-drivers/xf86-input-hyperpen x11-drivers/xf86-input-mutouch x11-drivers/xf86-input-pentouch # Michał Górny (25 Nov 2017) # Testing branch GTK+3 release. Changes API, breaks xfce-base/xfdesktop. # Masked until the latter sees a new release. >=dev-python/thunarx-python-0.4.0 >=xfce-base/thunar-1.7 # Jonas Stein (25 Nov 2017) # The latest version of this LaTeX package is part of # dev-texlive/texlive-latexextra # Masked for removal on 2017-12-30 dev-tex/notoccite # Bernard Cafarelli (24 Nov 2017) # Upstream removed tarball, no separate release in 3 years # Merged in net-misc/owncloud-client since # Masked for removal in 30 days. Bug #501228 net-misc/ocsync sys-auth/pam-csync # Bernard Cafarelli (24 Nov 2017) # Dead upstream, source not available anymore # Last open-source update in 2011 # Masked for removal in 30 days. Bug #638670 www-apps/eyeos # Matt Turner (23 Nov 2017) # The modesetting driver is part of the xorg-server package since version 1.17. # The separate xf86-video-modesetting package is no longer needed. # Bug #606132. x11-drivers/xf86-video-modesetting # Matt Turner (23 Nov 2017) # For ancient hardware. Tired of maintaining. Masked for removal in 30 days. # Bug #606132. x11-misc/afbinit x11-drivers/afb-ucode x11-drivers/xf86-video-apm x11-drivers/xf86-video-ark x11-drivers/xf86-video-chips x11-drivers/xf86-video-cirrus x11-drivers/xf86-video-freedreno x11-drivers/xf86-video-i128 x11-drivers/xf86-video-i740 x11-drivers/xf86-video-mach64 x11-drivers/xf86-video-neomagic x11-drivers/xf86-video-opentegra x11-drivers/xf86-video-rendition x11-drivers/xf86-video-s3 x11-drivers/xf86-video-s3virge x11-drivers/xf86-video-savage x11-drivers/xf86-video-sis x11-drivers/xf86-video-sisusb x11-drivers/xf86-video-suncg14 x11-drivers/xf86-video-suncg3 x11-drivers/xf86-video-suncg6 x11-drivers/xf86-video-sunffb x11-drivers/xf86-video-sunleo x11-drivers/xf86-video-suntcx x11-drivers/xf86-video-tga x11-drivers/xf86-video-trident x11-drivers/xf86-video-tseng # Jonas Stein (23 Nov 2017) # Depends on the AIM service which will be discontinued on 2017-12-15. # See also bug #638564. Masked for removal on 2017-12-20 net-analyzer/aimsniff # Kent Fredric (22 Nov 2017) # Long deprecated upstream in favour of dev-perl/Mail-SPF # Masked for removal in 30 days. Bug #638432 dev-perl/Mail-SPF-Query # Andreas Sturmlechner (21 Nov 2017) # Totally broken, depends on dead Qt4. Use sci-mathematics/octave[gui]. # Masked for removal in 30 days. Bugs #598930, #615284, #614582, #631524 sci-mathematics/qtoctave # Alice Ferrazzi (21 Nov 2017) # A regression in kernel 4.14.0 # Data corruption issue that affects at minimum bcache. # The hope is that this patch will make it to 4.14.1 Bug #638206 =sys-kernel/vanilla-sources-4.14.1 =sys-kernel/vanilla-sources-4.14.0 =sys-kernel/gentoo-sources-4.14.0 =sys-kernel/ck-sources-4.14.0 # Andreas Sturmlechner (16 Nov 2017) # Qt4WebKit is ancient and full of security holes. # Masked for removal in 30 days. Bug #620684 dev-qt/qtwebkit:4 # Andreas Sturmlechner (16 Nov 2017) # Depends on dead Qt4WebKit. Masked for removal in 30 days. Bug #620826 (16 Nov 2017) # Depends on dead Qt4WebKit. Masked for removal in 30 days. Bug #620702 (16 Nov 2017) # Depends on dead Qt4WebKit. Masked for removal in 30 days. Bug #620736 =net-misc/teamviewer-10* =net-misc/teamviewer-11* =net-misc/teamviewer-12* # Anthony G. Basile (13 Nov 2017) # Masked for removal in 30 days. Deprecated in favor of net-misc/nyx. net-misc/arm # Mike Gilbert (13 Nov 2017) # python-updater is obsolete. Utilize PYTHON_TARGETS and # emerge --changed-use to rebuild packages instead. # Removal in 30 days. app-admin/python-updater # Zac Medico (13 Nov 2017) # Masked for removal in 30 days. Current versions do not include a # standalone web server command, and there is an open security issue # (bug #630976). A fork is available as www-servers/civetweb. www-servers/mongoose # Jonas Stein (11 Nov 2017) # The upstream developer and former maintainer asked to treeclean these # packages, because they can be used only with the Siemens Mediacenter # Activy 3xx which was produced till 2005. He confirmed, that no user # is left who needs the package from our tree for this special hardware. # See also bug #633098. Masked for removal on 2018-01-31 app-misc/activylircd media-plugins/vdr-alcd # Jonas Stein (10 Nov 2017) # sci-geosciences/gmapcatcher violates the license of several images. # The package is unmaintained. Upstream will not / can not fix this problem. # See also bug #624046. Masked for removal on 2017-12-12 sci-geosciences/gmapcatcher # Brian Evans (07 Nov 2017) # Remote service removed this method, dead upstream # Masked for removal in 30 days. # Bug 636796 dev-php/PEAR-Services_W3C_HTMLValidator # Brian Evans (06 Nov 2017) # Broken with new PHP, dead upstream, broken tests # Masked for removal in 30 days. # Bug 636742 dev-php/PEAR-HTTP_Download # Mike Gilbert (05 Nov 2017) # Breaks several reverse dependencies. # https://bugs.gentoo.org/635934 >=dev-util/scons-3.0.0 # James Le Cuirot (05 Nov 2017) # Java 7 is old and we are no longer able to support it. The ability # to build against Java 7 may return when we update the eclasses for # Java 9 but the runtime will not return. If you need it then source # ebuilds will continue to be maintained by gnu_andrew in java-overlay # for a few years. Removal in 30 days. <=dev-java/icedtea-7.2.6.11:7 dev-java/icedtea-bin:7 virtual/jdk:1.7 virtual/jre:1.7 # James Le Cuirot (05 Nov 2017) # Upstream dead, bundles a vulnerable mupdf, nothing depends on it, # and blocks the removal of Java 7. Removal in 30 days. Bug #472832. app-text/jmupdf # Andreas K. Hüttel (04 Nov 2017) # Many, many, many open bugs. Blocks gcc-6 stabilization. # Removal of the old versions in 30 days; please upgrade to # Audacious 3.9 (may require manual keywording since not # marked stable anymore). (04 Nov 2017) # Dev channel releases are only for people who are developers or want more # experimental features and accept a more unstable release. >=www-client/chromium-64 # Marc Schiffbauer (01 Nov 2017) # Upstream abandoned obnam as of the end of the year # Masked for removal in 30 days. app-backup/obnam # Mike Gilbert (28 Oct 2017) # Tests segfault, bug 635732. # No updates upstream since 2013. # Removal in 30 days. dev-python/whirlpool # Patrice Clement (28 Oct 2017) # Missing dependencies. >=dev-python/scrapy-1.4.0 # Chí-Thanh Christopher Nguyễn (23 Oct 2017) # Dropping suid breaks some use cases, bug #635102 # Mask until they are fixed or properly documented, bug #450364 >=x11-base/xorg-server-1.19.5-r1 # Agostino Sarubbo (23 Oct 2017) # It was a fresmee RDEPENDS. Freesmee has been removed since a while # so it is not a depend of any package. No upstream releases # Masked for removal in 30 days. Reference in bug #634536 dev-util/ticpp # Robin H. Johnson (22 Oct 2017) # Masking for testing, contains Fedora Hobbled-EC for USE=bindist =dev-libs/openssl-1.0.2l-r1 # Andreas K. Hüttel (22 Oct 2017) # Broken with recent Perl (5.26) and not used by anything # in the Gentoo repository. Please uninstall. sys-devel/autoconf:2.59 sys-devel/autoconf:2.61 sys-devel/autoconf:2.62 sys-devel/autoconf:2.63 sys-devel/autoconf:2.65 sys-devel/autoconf:2.67 sys-devel/autoconf:2.68 # Andreas K. Hüttel (20 Oct 2017) # Doesn't build with glibc-2.25, doesn't build, needs a # version bump, needs a maintainer. Bugs 604364, 599004, # 627064. Removal in 30 days. app-crypt/zuluCrypt # Andreas K. Hüttel (18 Oct 2017) # sys-devel/automake versions 1.4, 1.5, 1.6, 1.7, 1.8 # have known security vulnerabilities, are broken with # recent Perl (>=5.26.0), and are not used by anything in # the Gentoo repository. Please uninstall. sys-devel/automake:1.4 sys-devel/automake:1.5 sys-devel/automake:1.6 sys-devel/automake:1.7 sys-devel/automake:1.8 # Jonas Stein (17 Oct 2017) # dev-tex/texmfind was superseded by app-portage/pfl # See also bug #634494. Masked for removal on 2017-11-30 dev-tex/texmfind # Lars Wendler (12 Oct 2017) # Dead upstream. No qt5 release. Use app-admin/keepassxc as drop-in # replacement which has very active upstream and regular releases. # Masked for removal in 30 days. app-admin/keepassx # Kent Fredric (11 Oct 2017) # This package should now be provided entirely by dev-lang/perl, # stable perl 5.24 provides Unicode-Collate-1.140.0 # testing perl 5.26 provides Unicode-Collate-1.190.0 # This should only be unmasked if you're locking to perl-5.24 and need # a newer version of virtual/perl-Unicode-Collate # If you're upgrading to perl-5.26, please do: # emerge -C perl-core/Unicode-Collate # See bug #634040 (10 Oct 2017) # This plugin's functions now collide with most Vim 8.0 functions. # Masked for removal in 30 days. See bug 589194. app-vim/html5 # Jonas Stein (10 Oct 2017) # Depends on the AIM service which will be discontinued on 2017-12-15. # See also bug #633914. Masked for removal on 2017-12-20 net-im/pyaim-t net-im/pork net-im/reaim # Aaron Bauman (8 October 2017) # severely vulnerable and unmaintained sources. # Masked for removal in 30 days. Bug #627924 sys-kernel/tuxonice-sources # Michał Górny (05 Oct 2017) # (on behalf of QA) # Rogue version bumps that reintroduce QA violations that were fixed # in #598527 and #598529, breaking the current verison # of app-portage/eix as a result, #633424. Do not reintroduce without # prior review from QA. =app-shells/push-3.0 =app-shells/quoter-4.0 # Patrice Clement (01 Oct 2017) # Mask Atom betas for testing. app-editors/atom:beta # Andreas Sturmlechner (16 Sep 2017) # Unfortunately broken esp. with USE=python. Bugs #623780, #631064 =sci-geosciences/qgis-2.18.12-r100 # Patrice Clement (09 Sep 2017) # Python 3 port is almost complete with version 0.6.0. Users might run into # minor bumps here and there which is why the mask is still in place for the # time being. >=dev-java/javatoolkit-0.6.0 # Gilles Dartiguelongue (04 Sep 2017) # Incompatible changes in API in Enchant 2. Bug #629838. >=app-text/enchant-2 # Lars Wendler (03 Sep 2017) # Masked because a new object API was introduced which breaks consumers: # https://cgit.freedesktop.org/poppler/poppler/commit/poppler/Object.h?id=9773c1534668d84b8267c3e5c9d612076fa231a5 # See also our tracker bug: https://bugs.gentoo.org/629836 >=app-text/poppler-0.58.0 # Gilles Dartiguelongue (2 Sep 1017) # Gnome 3.26 package mask >=app-text/libgepub-0.5 # Aaron Bauman (1 Sep 2017) # vulnerable per bug #513818 and dead upstream # net-analyzer/ntopng is available net-analyzer/ntop # Anthony G. Basile (27 Aug 2017) # Upstream is no longer providing public patches sys-kernel/hardened-sources # Patrice Clement (23 Aug 2017) # Packages depending on this library need to be tested first before # it is unmasked. Possibly some slotting is still needed. # Package testing tracked in bug #611022. >=dev-libs/msgpack-1.4.2 # Hanno Boeck (21 Aug 2017) # Open security bugs, no upstream, bug 628432 # Alternatives: app-arch/libarchive, app-arch/unar app-arch/unrar-gpl # Michał Górny (20 Aug 2017) # Pre-release of a new incompatible version that breaks the only reverse # dependency in Gentoo. Masked until 2.0.0 proper is released, or # dev-cpp/libjson-rpc-cpp is fixed, whichever happens first. >=dev-cpp/catch-2 # Sébastien Fabbro (19 Aug 2017) # ipython-6 is python-3 only and causes circular dependencies # Unset python_targets_python2_7 for ipykernel and ipyparallel if needed. >=dev-python/ipython-6 # Michael Orlitzky (18 Aug 2017) # Last version from 2011, and has a vulnerable init script # (bug 603382). The proxy-maintainer is unknown to bugzilla, # and the previous maintainer jmbsvicetto is OK with masking. (17 Aug 2017) # Masked ede and all its dependencies due to security reasons. # bug #398241 app-xemacs/ede app-xemacs/semantic app-xemacs/jde app-xemacs/xslt-process app-xemacs/xetla app-xemacs/cogre app-xemacs/ecb app-xemacs/xemacs-packages-all # Bernard Cafarelli (04 Aug 2017) # Temporary mask as current net-ftp/filezilla does not compile # with it, bug #626292 >=dev-libs/libfilezilla-0.10.0 # Kent Fredric (21 Jul 2017) # Masked due to serious regression that introduces widespread data # corruption when storing data in blobs. Masked, because any code # that is written to use this version is now dependent on this version # and older versions will corrupt your code instead. # However, any existing packages should not use this version. # See: https://github.com/perl5-dbi/DBD-mysql/issues/117 =dev-perl/DBD-mysql-4.42.0 # Mikhail Pukhlikov (20 Jul 2017) # Old mono/dotnet packages (used on GNOME2 stack) # also some deprecated forks used for monodevelop # awhile they are very unstable they will live in dotnet overlay gnome-extra/docky dev-dotnet/gnome-desktop-sharp dev-dotnet/gtksourceview-sharp dev-dotnet/rsvg-sharp dev-dotnet/vte-sharp dev-dotnet/wnck-sharp dev-dotnet/xdt-for-monodevelop dev-dotnet/nuget dev-dotnet/referenceassemblies-pcl # Ian Stakenvicius (19 Jul 2017) # Mask spidermonkey:52 as it is a self-rolled release, no official # release has been rolled. Is only committed to support development # versions of gjs. Will unmask when gnome-3.26 is ready for testing # or when upstream releases an official tarball. dev-lang/spidermonkey:52 # Nicolas Bock (17 Jul 2017) # Keep shotwell development series masked. >=media-gfx/shotwell-0.27 # Nicolas Bock (31 Oct 2017) # There are multiple unresolved upstream issues with jabref-bin-4.0 (#636036). # If you still would like to use this version, please report any issues to # upstream. =app-text/jabref-bin-4.0 # Pacho Ramos (14 Jul 2017) # Doesn't work with >=openvpn-2.3, bug 470696 # Fix is work in progress, see above bug. dilfridge@g.o net-vpn/kvpnc # Pacho Ramos (14 Jul 2017) # Randomly broken due to sys-devel/binutils-config bug (#584296). # Unmask when it is finally fixed, so people can build the package. dev-util/mutrace # Matthias Schwarzott (03 Jul 2017) # The snapshots got a wrong version number assigned. # They are from before version 2.0.0. Masking them to force # an update to version 2.0.0 as soon as it is added to the tree. =media-plugins/vdr-xineliboutput-2.0.0_p20130821 =media-plugins/vdr-xineliboutput-2.0.0_p20150220 # Thomas Deutschmann (28 Jun 2017) # New strip feature which is enabled by default causes genkernel # to create unbootable kernel/initramfs images. Bug #622716 =sys-kernel/genkernel-3.5.1.0 # Hans de Graaff (05 Jun 2017) # Bundles obsolete and vulnerable webkit version. # Upstream has stopped development and recommends using # headless mode in >=www-client/chromium-59. # Masked for removal in 90 days. Bug #589994. www-client/phantomjs dev-ruby/poltergeist # Thomas Deutschmann (24 May 2017) # Broken runscript/changed behavior causing lvm2 to fail # on boot. Bug #617578 >=sys-fs/lvm2-2.02.171 # Michał Górny (22 May 2017) # for Maciej S. Szmigiero # Any version above 5.100.138 breaks b43 driver in various ways. # Also, b43 wiki page says to use 5.100.138. Bug #541080. >=sys-firmware/b43-firmware-6.30.163.46 # Michał Górny , Andreas K. Hüttel , # Matthias Maier (21 May 2017) # These old versions of toolchain packages (binutils, gcc, glibc) are no # longer officially supported and are not suitable for general use. Using # these packages can result in build failures (and possible breakage) for # many packages, and may leave your system vulnerable to known security # exploits. # If you still use one of these old toolchain packages, please upgrade (and # switch the compiler / the binutils) ASAP. If you need them for a specific # (isolated) use case, feel free to unmask them on your system. (20 May 2017) # Old versions of CUDA and their reverse dependencies. They do not # support GCC 4.9+, and are really old. (18 May 2017) # Experimental, most consumers does not support it yet >=dev-games/openscenegraph-3.5.5 >=dev-games/openscenegraph-qt-3.5.5 # Bernard Cafarelli (8 May 2017) # Coordinated conversion to wxGTK:3.0-gtk3 # Drop mask after migration of existing wxGTK:3.0 users # and wxGTK-3.0.3 bump in tree >=net-ftp/filezilla-3.25.2-r1 # Zac Medico (01 May 2017) # Possible API incompatibilities, bug #617174. # http://aiohttp.readthedocs.io/en/latest/migration.html >=dev-python/aiohttp-2 >=dev-python/yarl-0.10 # Rick Farina (17 Apr 2017) # Masking old versions because upstream changed versioning # Please keep this mask for 1 year to ease upgrades for users =app-crypt/hashcat-3.10-r1 =app-crypt/hashcat-3.30 =app-crypt/hashcat-3.40 # Lars Wendler (24 Mar 2017) # Masked until Mozilla and Chrome agreed how to handle # Symantec trust issues properly (bug #613714) =app-misc/ca-certificates-20161130.3.30-r1 # Eray Aslan (01 Mar 2017) # Mask experimental software =mail-mta/postfix-3.3* # Mart Raudsepp (16 Feb 2017) # Old gstreamer 0.10 version, which is security vulnerable. # Use gstreamer:1.0 with media-plugins/gst-plugins-libav # instead (despite the name, it uses media-video/ffmpeg too). # Please keep this mask entry until gstreamer:0.10 is still # in tree or at least gets an affecting GLSA from bug 601354 # Bug #594878. media-plugins/gst-plugins-ffmpeg # Kent Fredric (04 Feb 2017) # Unsecure versions that have been only restored to tree # to resolve compatibility problems with mail-filter/amavisd-new # Use with caution due to these being removed for CVE-2016-1251 # Bug: #601144 # Bug: #604678 (06 Feb 2017) # Needs openssl-1.1 >=dev-libs/opencryptoki-3.6 # Bernard Cafarelli (30 Jan 2017) # Alpha release with new features, masked for testing =app-text/tesseract-4.00.00_alpha* # Michał Górny (26 Jan 2017) # Pre-release, masked for testing. Major changes since 2.0.4, # including dropped support for BlueZ 4. =net-wireless/blueman-2.1_alpha* # Yixun Lan (16 Jan 2017) # Masked, Vulnerable due to RGW Denial of Service (bug #598206) # We mask it instead of removing them, due user may need them while # upgrade from old versions (<0.94.x) (12 Jan 2017) # Use x11-drivers/nvidia-drivers[tools] instead. media-video/nvidia-settings # Michael Orlitzky (07 Jan 2017) # This package has some dangerous quality and security issues, but # people may still find it useful. It is masked to prevent accidental # use. See bugs 603346 and 604998 for more information. app-admin/amazon-ec2-init # Mart Raudsepp (07 Jan 2017) # No releases of this API version since March 2001, abandoned # in favour of glib:2 for 14 years; bug 604966. # Removed at 2017-02-08, mask kept for longer display to users. dev-libs/glib:1 # Mart Raudsepp (06 Jan 2017) # No releases of this API version since April 2001, abandoned # in favour of gtk+:2 for 14 years; bug 604862. # Removed at 2017-02-08, mask kept for longer display to users. x11-libs/gtk+:1 # Robin H. Johnson (05 Jan 2017) # Masking for testing =app-emulation/ganeti-2.16* =app-emulation/ganeti-2.17* # Michał Górny (17 Nov 2016) # New version masked for testing. It supports source-window buffer size # over 2G but it 'currently performs 3-5% slower and has 1-2% worse # compression'. >=dev-util/xdelta-3.1.0 # Tim Harder (03 Nov 2016) # Masked for testing =sys-fs/fuse-3.0.0* # Denis Dupeyron (12 Sep 2016) # Masked for testing, see bug #588894. =x11-misc/light-locker-1.7.0-r1 # Lars Wendler (26 Aug 2016) # Masked while being tested and reverse deps aren't fully compatible =dev-libs/openssl-1.1* # Michał Górny (18 Jul 2016) # Pre-release of a complete rewrite, provided for early testing. Not all # functionality is provided yet. Use --pretend to make sure correct # files will be removed. >=app-admin/eclean-kernel-1.99 # Chris Reffett (25 May 2016) # The webkit-gtk:4 backend for Xiphos has known text display issues. # Use at your own risk. =app-text/xiphos-4.0.4-r1 # James Le Cuirot (03 Apr 2016) # Masking Spring Framework for the time being as 3.2.4 is old, has # multiple vulnerabilities, and we're not likely to update it # soon. Hopefully we can revisit it when the Maven stuff works out. dev-java/spring-aop dev-java/spring-beans dev-java/spring-core dev-java/spring-expression dev-java/spring-instrument # Andreas K. Hüttel (03 Apr 2016) # Can exhaust all available memory depending on task # but is made available for experts who heed this warning # as newer versions produce different output. Contact # the proxied maintainer Matthew Brewer # for questions. <=media-gfx/slic3r-1.1.9999 # José María Alonso (24 Mar 2016) # Fails to build dev-lisp/sbcl-1.3.3 #563812 =dev-lisp/asdf-3.1.7 =dev-lisp/uiop-3.1.7 # James Le Cuirot (07 Feb 2016) # Masked until 2.0 final arrives, which hopefully won't depend on # commons-dbcp:0 as that requires Java 6. Note that the 2.0 in the # tree should have actually been 2.0_beta1. There are no revdeps. dev-java/jcs # Andrey Grozin (04 Jan 2016) # Needs a bump and substantial ebuild rewrite =sci-mathematics/reduce-20110414-r1 # Michał Górny (30 Oct 2015) # Uses unsafe ioctls that could result in data corruption. Upstream # is working on replacing them in the wip/dedup-syscall branch. # Keep it masked until they are done. sys-fs/duperemove is # the suggested replacement for the meantime. sys-fs/bedup # Ian Delaney (27 Oct 2015) # fails to build dev-lisp/sbcl-1.2.16 #563812 # mgorny: dev-lisp/uiop as version-bound revdep =dev-lisp/asdf-3.1.6 =dev-lisp/uiop-3.1.6 # Mike Pagano (2 Oct 2015) # A regression in kernel 4.1.9 could lead to a system # lockup. This has been fixed in gentoo-sources-4.1.9-r1 # and the hope is that this patch will make it to 4.1.10 # Expires (2 Oct 2017) =sys-kernel/vanilla-sources-4.1.9 =sys-kernel/gentoo-sources-4.1.9 # Lars Wendler (20 Aug 2015) # Releases are not from original upstream but from a fork. # Masked as requested by vapier. ~net-misc/iputils-20160308 ~net-misc/iputils-20161105 # Sebastian Pipping (8 Aug 2015) # Upcoming, too young to go into testing unmasked dev-libs/iniparser:4 # Justin Lecher (28 Feb 2015) # Unfixed security problems # No upstream support anymore # CVE-2015-{0219,0220,0221,0222,5145} # CVE-2016-{9013,9014},CVE-2017-{7233,7234} # #536586 # #554864 =dev-python/django-1.4* =dev-python/django-1.5* =dev-python/django-1.6* =dev-python/django-1.7* =dev-python/django-1.9* # Robin H. Johnson (04 Aug 2014) # Masked for testing, presently fails upstream testsuite: # FAIL:07:02:35 (00:00:00) db_dump/db_load(./TESTDIR.3/recd001.db:child killed: kill signal): expected 0, got 1 # FAIL:07:02:35 (00:00:00) Dump/load of ./TESTDIR.3/recd001.db failed. # FAIL:07:02:35 (00:00:00) db_verify_preop: expected 0, got 1 =sys-libs/db-6.1* =sys-libs/db-6.2* # Ulrich Müller (15 Jul 2014) # Permanently mask sys-libs/lib-compat and its reverse dependencies, # pending multiple security vulnerabilities and QA issues. # See bugs #515926 and #510960. sys-libs/lib-compat sys-libs/lib-compat-loki games-action/mutantstorm-demo games-action/phobiaii games-fps/rtcw games-fps/unreal games-strategy/heroes3 games-strategy/heroes3-demo games-strategy/smac # Mikle Kolyada (27 Jun 2014) # Masked for proper testing. (Major updates in the code). ~dev-perl/PortageXS-0.2.12 # Hans de Graaff (1 Jun 2014) # Mask new rubinius version for testing. This needs more work # to fully integrate it in our Gentoo ruby handling. Volunteers # welcome. =dev-lang/rubinius-3* # Matti Bickel (22 Apr 2014) # Masked slotted lua for testing # William Hubbs (07 Aug 2016) # Taking this mask since Mabi is retired # Rafael Martins (04 Dec 2016) # Adding Lua 5.3 to mask app-eselect/eselect-lua =dev-lang/lua-5.1.5-r2 =dev-lang/lua-5.1.5-r100 =dev-lang/lua-5.1.5-r101 =dev-lang/lua-5.2.3 =dev-lang/lua-5.2.3-r1 =dev-lang/lua-5.2.3-r2 =dev-lang/lua-5.3.3 =dev-lang/lua-5.3.3-r1 # Mike Gilbert (04 Mar 2014) # Dev channel releases are only for people who are developers or want more # experimental features and accept a more unstable release. www-plugins/chrome-binary-plugins:unstable # Justin Lecher (14 Oct 2013) # Seems to break all deps - API change? >=sci-libs/metis-5 # Michael Weber (17 Jul 2013) # Upstream next versions >=sys-boot/raspberrypi-firmware-1_pre # Richard Freeman (24 Mar 2013) # Contains known buffer overflows. Package generally works # but should not be fed untrusted input (eg from strangers). # Masked to ensure users are aware before they install. app-text/cuneiform # Samuli Suominen (06 Mar 2012) # Masked for testing since this is known to break nearly # every reverse dependency wrt bug 407091 >=dev-lang/lua-5.2.0 # Samuli Suominen (30 Oct 2011) # Masked for security bug #294253, use only at your own risk! =media-libs/fmod-3* # Diego E. Pettenò (03 Jan 2009) # These packages are not supposed to be merged directly, instead # please use sys-devel/crossdev to install them. dev-libs/cygwin dev-util/mingw-runtime dev-util/mingw64-runtime dev-util/w32api sys-libs/newlib dev-embedded/avr-libc # Chris Gianelloni (03 Mar 2008) # Masking due to security bug #194607 and security bug #204067 games-fps/doom3 games-fps/doom3-cdoom games-fps/doom3-chextrek games-fps/doom3-data games-fps/doom3-demo games-fps/doom3-ducttape games-fps/doom3-eventhorizon games-fps/doom3-hellcampaign games-fps/doom3-inhell games-fps/doom3-lms games-fps/doom3-mitm games-fps/doom3-roe games-fps/quake4-bin games-fps/quake4-data games-fps/quake4-demo # (01 Apr 2004) # The following packages contain a remotely-exploitable # security vulnerability and have been hard masked accordingly. # # Please see https://bugs.gentoo.org/show_bug.cgi?id=44351 for more info # games-fps/unreal-tournament-goty games-fps/unreal-tournament-strikeforce games-fps/unreal-tournament-bonuspacks games-fps/aaut