Re: Fwd: Re: [SECURITY] CVE-2019-7443 (kauth) in kdelibs

To: debian-kde@lists.debian.org
Subject: Re: Fwd: Re: [SECURITY] CVE-2019-7443 (kauth) in kdelibs
From: inkbottle <inkbottle007@gmail.com>
Date: Fri, 10 May 2019 00:03:22 +0200
Message-id: <[🔎] 311501581.njgFf0o5tl@pluto>
In-reply-to: <[🔎] 2004956.IIFtWgPjbK@pluto>
References: <5284287.hio6RWUJ6k@tuxin> <[🔎] 2004956.IIFtWgPjbK@pluto>

On Monday, May 6, 2019 1:36:56 AM CEST you wrote:

> On Sunday, March 24, 2019 12:05:40 AM CEST Sandro Knauß wrote:

> > Hey,

> >

> > FreeBSD removed Qt4 compelty last weekend from their repo.

> >

> > hefee

> I've perused the list there,

> https://svnweb.freebsd.org/ports?view=revision&revision=495967,

> I'm pretty sure I won't be missing anything.

> We should try it.

Hum, seems I misunderstood; I've been a bit carried away by this removal thing. What I understand now is that it really is postponed to after Buster release. https://lists.debian.org/debian-qt-kde/2019/04/msg00007.html

Probably strategically a very good idea.

> Chris

> > ---------- Forwarded Message ----------

> >

> > Subject: Re: [SECURITY] CVE-2019-7443 (kauth) in kdelibs

> > Date: Samstag, 23. März 2019, 22:54:08 CET

> > From: Tobias C. Berner

> > To: Sandro Knauß, Adriaan de Groot

> >

> > Moin moin

> >

> > On FreeBSD we just solved this be removing that stuff too

> > [KDE4 and things depending on it was removed 2018-12-31, Qt4 last

> > weekend.]

> > https://svnweb.freebsd.org/ports?view=revision&revision=495967

> >

> > I was kind of scared of having a big backlash to this action -- though

> > there was none in the end.

> > So as an advice from kde@FreeBSD's side: just pull the plug and remove

> > that

> > stuff :)

> >

> > mfg Tobias

> >

> > On Sat, 23 Mar 2019 at 12:35, Sandro Knauß wrote:

> > > Hi,

> > >

> > > > kdelibs last release was 4.14.35 in August 2017.

> > > >

> > > > kdelibs is no longer maintained.

> > > >

> > > > Qt 4 last release was 4.8.7 in May 2015.

> > > >

> > > > Qt 4 is no longer maintained.

> > > >

> > > > Our suggestion is to stop using any qt4/kdelibs based software and

> > > > move

> > >

> > > to

> > >

> > > > the future if you're concerned about security and/or want to use

> > >

> > > maintained

> > >

> > > > software.

> > >

> > > It is not that we do not try it, to remove Qt4 from Debian. We try since

> > > Aug

> > > 2017 to reach this goal to remove all qt4/kdelibs software, but still

> > > there is

> > > a lot depending on qt4/kdelibs:

> > >

> > > https://wiki.debian.org/Qt4Removal

> > >

> > > (If you have any notes about status of packages aka dead by upstream -

> > > input

> > > is very welcomed).

> > >

> > > In next Debian Buster released in some months we still need to ship qt4/

> > > kdelibs.

> > >

> > > Regards,

> > >

> > > hefee

Reply to:

References:
- Re: Fwd: Re: [SECURITY] CVE-2019-7443 (kauth) in kdelibs
  - From: inkbottle <inkbottle007@gmail.com>

Prev by Date: Re: 18.08; imap.googlemail.com vs. imap.gmail.com; "akonadi resources for google services"
Next by Date: SDDM and Save dialogues slow
Previous by thread: Re: Fwd: Re: [SECURITY] CVE-2019-7443 (kauth) in kdelibs
Next by thread: Re: 18.08; imap.googlemail.com vs. imap.gmail.com; "akonadi resources for google services"
Index(es):
- Date
- Thread