#################################################################### # $Id$ # # When you add an entry to the top of this file, add your name, the date, and # an explanation of why something is getting masked. Please be extremely # careful not to commit atoms that are not valid, as it can cause large-scale # breakage, especially if it ends up in the daily snapshot. # ## Example: ## ## # Dev E. Loper (28 Jun 2012) ## # Masking these versions until we can get the ## # v4l stuff to work properly again ## =media-video/mplayer-0.90_pre5 ## =media-video/mplayer-0.90_pre5-r1 # # - Best last rites (removal) practices - # Include the following info: # a) reason for masking # b) bug # for the removal (and yes you should have one) # c) date of removal (either the date or "in x days") # ## Example: ## ## # Dev E. Loper (23 May 2015) ## # Masked for removal in 30 days. Doesn't work ## # with new libfoo. Upstream dead, gtk-1, smells ## # funny. (bug #987654) ## app-misc/some-package #--- END OF EXAMPLES --- # Anthony G. Basile (27 Mar 2016) # Fails to build, bug #578348 x11-wm/lumina # Pawel Hajdan jr (25 Mar 2016) # Dev channel releases are only for people who are developers or want more # experimental features and accept a more unstable release. >=www-client/chromium-51 # Michael Palimaka (24 Mar 2016) # Requires old llvm. Dead upstream. # Masked for removal in 30 days. Bug #571216. dev-python/llvmpy dev-python/llvmmath dev-python/pykit # José María Alonso (24 Mar 2016) # Fails to build dev-lisp/sbcl-1.3.3 #563812 =dev-lisp/asdf-3.1.7 =dev-lisp/uiop-3.1.7 # Michael Palimaka (24 Mar 2016) # Doesn't run. Unmaintained. Bug #304865. # Masked for removal in 30 days. app-cdr/qmultirecord # Michael Palimaka (24 Mar 2016) # Fails to build. Bug #368953. # Masked for removal in 30 days. net-p2p/hx # Aaron Bauman (19 Mar 2016) # Unpatched security vulnerability per bug #521892. # Masked for removal in 30 days. net-irc/srvx # Aaron Bauman (19 Mar 2016) # Unpatched security vulnerability per bug #261182. # Masked for removal in 30 days. media-sound/shoutcast-server-bin media-sound/shoutcast-trans-bin # Lars Wendler (20 Mar 2016) # Don't work with latest claws-mail package. Most plugins are now part of # claws-mail sources and can be en-/disabled via USE flags. # Masked for removal in 30 days. mail-client/claws-mail-acpi-notifier mail-client/claws-mail-address_keeper mail-client/claws-mail-archive mail-client/claws-mail-att-remover mail-client/claws-mail-attachwarner mail-client/claws-mail-clamd mail-client/claws-mail-fancy mail-client/claws-mail-fetchinfo mail-client/claws-mail-gdata mail-client/claws-mail-gtkhtml mail-client/claws-mail-mailmbox mail-client/claws-mail-newmail mail-client/claws-mail-notification mail-client/claws-mail-pdf-viewer mail-client/claws-mail-perl mail-client/claws-mail-python mail-client/claws-mail-rssyl mail-client/claws-mail-spam-report mail-client/claws-mail-tnef-parse mail-client/claws-mail-vcalendar # Andreas K. Huettel (19 Mar 2016) # Dead upstream since 2010, new VMware uses new incompatible # proprietary libview. No other consumers. Removal in 30 days. # Bug 569930 x11-libs/libview # Aaron Bauman (19 Mar 2016) # Unpatched security vulnerability per bug #512356. # Masked for removal in 30 days. =app-forensics/chkrootkit-0.49 # Aaron Bauman (19 Mar 2016) # Unpatched security vulnerability per bug #529712. # Masked for removal in 30 days. www-apps/coppermine # Aaron Bauman (19 Mar 2016) # Multiple unpatched security vulnerabilities # per bug #532040. Masked for removal in 30 days. dev-libs/matrixssl # Michael Palimaka (17 Mar 2016) # Dead upstream. Doesn't work with new Twitter API. # Masked for removal in 30 days. net-im/qtwitter # James Le Cuirot (14 Mar 2016) # Bye bye Java 6! If you really still need it then gnu_andrew will # continue to maintain icedtea:6 in java-overlay but it is not # supported by Java team at all. IBM's JVM is still alive but # downloads are behind a registration wall and Java team does not wish # to support it. haubi may provide IBM updates though probably only # for ppc-aix. Removal in 30 days. dev-java/apple-jdk-bin dev-java/hp-jdk-bin dev-java/ibm-jdk-bin:1.6 dev-java/ibm-jre-bin:1.6 dev-java/icedtea-bin:6 (14 Mar 2016) # Our old ebuilds require Java 6/7 and are most likely # vulnerable. Upstream has a new version targeting Java 8 but no # response from dotnet team. I am leaving ikvm-bin alone but only # because it doesn't require Java. Removal in 30 days. dev-dotnet/ikvm # James Le Cuirot (14 Mar 2016) # Requires Java 6. No stable releases since 2003 and no longer # required by bt747. Removal in 30 days. dev-java/jcharts # Hans de Graaff (14 Mar 2016) # Not compatible with ruby21+, no reverse dependencies. dev-ruby/extlib # Patrice Clement (14 Mar 2016) # No activity nor release since 2010. Does not compile with Java 8. # Masked for removal. See bug 577368. dev-vcs/statsvn dev-vcs/statcvs # Mike Gilbert (12 Mar 2016) # Drops libsystemd-{daemon,id128,journal,login}.pc. # Bug: https://bugs.gentoo.org/577158 =sys-apps/systemd-229-r100 # Michael Palimaka (11 Mar 2016) # Fails to build. Use version included in dev-texlive/texlive-science instead. # Masked for removal in 30 days. Bug 573780. dev-tex/xymtex # Michael Palimaka (11 Mar 2016) # Fails to build. Use version included in dev-texlive/texlive-latexextra instead. # Masked for removal in 30 days. Bug 574032. dev-tex/fundus # Alexandre Rostovtsev (10 Mar 2016) # Masking until we figure out what to do about bug #576930 =gnome-base/gnome-extra-apps-3.18.0-r2 # Michael Palimaka (09 Mar 2016) # Deprecated by upstream. No further releases. Unused. lxqt-base/liblxqt-mount lxqt-base/lxqt-config-randr # Michael Palimaka (09 Mar 2016) # Dead upstream. Doesn't work with new Twitter API. # Masked for removal in 30 days. Bug 575156 net-im/qwit # Aaron Bauman (05 Mar 2016) # Pending completion of 9 security bugs against # this package. Multiple vulnerabilities and no # updates from maintainers. Removal in 30 days. www-apps/mantisbt # Ian Stakenvicius (06 Mar 2016) # Mask old versions of thunderbird as they are no longer supported, # but we keep them in the repo for now in case there is a need # for them for upgrading old user profiles, etc. ~mail-client/thunderbird-24.8.0 ~mail-client/thunderbird-31.8.0 # Aaron Bauman (05 Mar 2016) # Per security bug #491372 this package is vulnerable # and unmaintained. Removal in 30 days. net-mail/perdition # Aaron Bauman (05 Mar 2016) # Per security bug #448826 this package is vulnerable # and unmaintained. Removal in 30 days. www-apps/dragonflycms # Aaron Bauman (05 Mar 2016) # Per security bug #392325 this package is vulnerable # and unmaintained. Removal in 30 days. dev-libs/clearsilver # Aaron Bauman (05 Mar 2016) # Per security bug #466782 this package is vulnerable # and unmaintained. Removal in 30 days. media-sound/xmp # Aaron Bauman (05 Mar 2016) # Per security bug #399563, #489946, #489948, and # #490422 these packages are vulnerable # and unmaintained. Removal in 30 days. www-apps/horde www-apps/horde-chora www-apps/horde-dimp www-apps/horde-gollem www-apps/horde-hermes www-apps/horde-imp www-apps/horde-ingo www-apps/horde-jeta www-apps/horde-kronolith www-apps/horde-mimp www-apps/horde-mnemo www-apps/horde-nag www-apps/horde-passwd www-apps/horde-pear www-apps/horde-turba # Alexis Ballier (01 Mar 2016) # Breaks some of its rev deps, still in beta stage >=dev-lang/ocaml-4.03_beta >=dev-ml/camlp4-4.03 >=dev-ml/ppx_tools-4.03 # James Le Cuirot (29 Feb 2016) # Dead upstream and doesn't build with Java 8. Removal in 30 days. sci-biology/readseq # Patrice Clement (29 Feb 2016) # Duplicate of dev-libs/libedit. # Masked for removal in 30 days. sys-libs/libedit # Patrick Lauer (22 Feb 2016) # Inactive upstream, build failures, obsoleted by rakudo/perl6 dev-lang/niecza dev-lang/niecza-bin # Eray Aslan (22 Feb 2016) # Mask experimental software =mail-mta/postfix-3.2* # Yixun Lan (16 Feb 2016) # Mask early development version, leave only upstream stable version >=sys-cluster/ceph-10 # Sergey Popov (15 Feb 2016) # Security mask, wrt bug #519730 (15 Feb 2016) # Breaks some of its reverse dependencies. # Bug 574788 >=media-video/ffmpeg-3.0 >=media-video/mplayer-1.3.0 # Aaron W. Swenson (11 Feb 2016) # Susceptible to security issues and other bugs. Removal pending # stabilization of 9.5.1, 9.4.6, 9.3.11, 9.2.15, and 9.1.20. =dev-db/postgresql-9.0.23-r1 # Aaron Bauman (10 Feb 2016) # Old, no active or proxy maintainer, dead upstream # and nothing depends on it. # Masked for removal in 30 days. See bug 573326 dev-python/simplegui # James Le Cuirot (07 Feb 2016) # Masked until 2.0 final arrives, which hopefully won't depend on # commons-dbcp:0 as that requires Java 6. Note that the 2.0 in the # tree should have actually been 2.0_beta1. There are no revdeps. dev-java/jcs # Wolfram Schlich (06 Feb 2016) # Mask live ebuild =net-im/mcabber-9999 # Bernard Cafarelli (27 Jan 2016) # New llvm version, masked for testing =sys-devel/llvm-3.8.0* =sys-devel/clang-3.8.0* # Sergey Popov (20 Jan 2016) # Mask new versions of Boost - they are known to cause breakages ~dev-util/boost-build-1.60.0 ~dev-libs/boost-1.60.0 ~dev-util/boost-build-1.59.0 ~dev-libs/boost-1.59.0 # Mike Frysinger (18 Jan 2016) # Force people to migrate to the new combined libraries: # media-libs/elementary & dev-libs/efl. #571796 app-benchmarks/expedite dev-libs/ecore dev-libs/edbus dev-libs/eet dev-libs/eeze dev-libs/efreet dev-libs/eina dev-libs/eio dev-libs/embryo dev-libs/eobj dev-libs/ephysics media-libs/edje media-libs/emotion media-libs/ethumb media-libs/evas # Sergei Trofimovich (19 Jan 2016) # Mask broken package. Exposes badly designed API # that can't be transparently used in ghc-7.8 and # ghc-7.10, bug #561122 dev-haskell/extra:0 # Andreas K. Hüttel (9 Jan 2016) # Errorneously added. Is already in perl-core. Please uninstall. dev-perl/ExtUtils-Constant # Pacho Ramos (06 Jan 2016) # Unbuildable for a long time, bug #522916. Removal in a month. net-im/silc-server # NP-Hardass (05 Feb 2016) # Security issues bug #536334. Remove this entry in a month. (05 Feb 2016) # Security issues bug #536334. Under investigation by maintainer. app-admin/389-ds-console net-nds/389-admin app-admin/389-admin-console www-apps/389-dsgw # Andrey Grozin (04 Jan 2016) # Needs a bump and substantial ebuild rewrite =sci-mathematics/reduce-20110414-r1 # Victor Ostorga (30 Dec 2015) # Mask this liferea version because upstream released it broken =net-news/liferea-1.10.17 # Fabian Groffen (11 Dec 2015) # Release candidates for Exim 4.87 =mail-mta/exim-4.87_rc6 # Anthony G. Basile (06 Dec 2015) # Masked until we deal with SSLv3, bug #567554 =dev-libs/libressl-2.3* # Brian Evans (02 Dec 2015) # All current targets are masked. (02 Dec 2015) # PHP 5.4 is End Of Life and will not receive any further updates # Please migrate to 5.5 or, preferably 5.6. dev-lang/php:5.4 ~virtual/httpd-php-5.4 # Michał Górny (30 Oct 2015) # Uses unsafe ioctls that could result in data corruption. Upstream # is working on replacing them in the wip/dedup-syscall branch. # Keep it masked until they are done. sys-fs/duperemove is # the suggested replacement for the meantime. sys-fs/bedup # Ian Delaney (27 Oct 2015) # fails to build dev-lisp/sbcl-1.2.16 #563812 # mgorny: dev-lisp/uiop as version-bound revdep =dev-lisp/asdf-3.1.6 =dev-lisp/uiop-3.1.6 # Justin Lecher (23 Oct 2015) # Breaking changes #563540 =app-text/ghostscript-gpl-9.18 # Mike Frysinger (18 Oct 2015) # apache-2.4.17 includes support for http2 now. www-apache/mod_h2 # Mike Pagano (2 Oct 2015) # A regression in kernel 4.1.9 could lead to a system # lockup. This has been fixed in gentoo-sources-4.1.9-r1 # and the hope is that this patch will make it to 4.1.10 # Expires (2 Oct 2017) =sys-kernel/vanilla-sources-4.1.9 =sys-kernel/gentoo-sources-4.1.9 # Andreas K. Huettel (19 Sep 2015) # Masked for security reasons, bugs 516044, 552644 # Keeping it in the tree for now for users who cannot upgrade # (commercial product, separate licenses for major versions) =app-emulation/vmware-workstation-9* =app-emulation/vmware-modules-271* # Lars Wendler (09 Sep 2015) # Masked for testing >=net-fs/samba-4.3.0 # Lars Wendler (20 Aug 2015) # Releases are not from original upstream but from a fork. # Masked as requested by vapier. ~net-misc/iputils-20150815 ~net-misc/iputils-20160308 # Sebastian Pipping (8 Aug 2015) # Upcoming, too young to go into testing unmasked dev-libs/iniparser:4 # Davide Pesavento (23 Jul 2015) # Standalone version of qtwebkit from the 2.3 upstream branch. # Needs revdep testing. Bug #388207. =dev-qt/qtwebkit-4.10* # Ian Delaney (21 Jul 2015) # The revbump has versions of lua which are also masked. # Masked until those slotted versions are unmasked =sys-apps/roccat-tools-3.5.0-r1 # Ben de Groot (20 Jul 2015) # Version bump is a WIP, see bug #524242 # It works (except USE=vamp) but is not up to Gentoo standards yet =media-sound/audacity-2.1.1 # Patrick Lauer (1 Jul 2015) # Wrong version #553670 =sys-kernel/gentoo-sources-4.1.1 # Patrick Lauer (14 Jun 2015) # Has race condition / failure modes that make systems unusable # See #551724 and duplicates =sys-fs/udev-init-scripts-29 # Patrick Lauer (10 Apr 2015) # Breaks pretty much all consumers, like samba # Mask until it's more usable >=net-libs/gnutls-3.4.0 # Michał Górny (28 Mar 2015) # on behalf of gx86-multilib project # Removed lastrited emul-linux-x86. The mask is kept post-removal # per Arfrever's request so that the PM warns about masked packages # being installed. app-emulation/emul-linux-x86-baselibs app-emulation/emul-linux-x86-cpplibs app-emulation/emul-linux-x86-db app-emulation/emul-linux-x86-gstplugins app-emulation/emul-linux-x86-gtklibs app-emulation/emul-linux-x86-gtkmmlibs app-emulation/emul-linux-x86-medialibs app-emulation/emul-linux-x86-motif app-emulation/emul-linux-x86-opengl app-emulation/emul-linux-x86-qtlibs app-emulation/emul-linux-x86-sdl app-emulation/emul-linux-x86-soundlibs app-emulation/emul-linux-x86-xlibs app-emulation/emul-linux-x86-jna # Justin Lecher (28 Feb 2015) # Unfixed security problems # No upstream support anymore # CVE-2015-{0219,0220,0221,0222,5145} # #536586 # #554864 =dev-python/django-1.4* =dev-python/django-1.5* =dev-python/django-1.6* # Not supported by any django version upstream supports dev-python/south # Michał Górny (11 Feb 2015) # Potentially destructive to @world, bug #539746. =sys-apps/portage-2.2.16 # Sergei Trofimovich (29 Jan 2015) # Mask live ebuild =dev-util/radare2-9999 # Anthony G. Basile (9 Jan 2015) # p.mask the -9999 version =dev-misc/i2pd-9999 # Tony Vroon (5 Jan 2015) # Asterisk 13 is an LTS release but has not seen # sufficient releases to be considered ready for # production usage. You are welcome to have a go # but please be careful. =net-misc/asterisk-13* # Aaron W. Swenson (28 Dec 2014) # Split ebuilds are no longer maintained. Migrate to the unified # ebuilds invoking the following, substituting SLOT for the desired # slot and optionally enabling the server and/or docs USE flags: # emerge dev-db/postgresql:SLOT # No further action is required. dev-db/postgresql-docs dev-db/postgresql-base dev-db/postgresql-server # Jeroen Roovers (12 Dec 2014) # The 96 and 173 branches are no longer supported and remain vulnerable to # CVE-2014-8298 (bug #532342). You may be able to mitigate the vulnerability by # disabling GLX indirect rendering protocol support on the X server. (09 Dec 2014) # Security mask, wrt bug #529728 (29 Nov 2014) # Depends on media-libs/lcms:0, which has unspecified security vulnerabilities. # Masked until mscms.dll.so that links to media-libs/lcms:2 is backported from # a newer wine, bug #526806. (24 Nov 2014) # Missing deps, uninstallable www-apps/trac-downloads # Markos Chandras (18 Nov 2014) # Mask latest development version for testing =x11-misc/lightdm-1.17* # Mike Pagano (16 Oct 2014) # A regression in kernels 3.17.0 lead to file system corruption # for affected systems. This has been fixed in >= 3.17.1 # Expires (16 Oct 2016) # See Bug #525548. =sys-kernel/vanilla-sources-3.17.0 =sys-kernel/gentoo-sources-3.17.0 =sys-kernel/aufs-sources-3.17.0 # Michał Górny (15 Sep 2014) # Causes undefined references few layers down (in mediastreamer), # someone needs to investigate. >=net-libs/libzrtpcpp-4 # Christian Faulhammer (02 Sep 2014) # website not working anymore and will stay like this, # tool is useless. See bug 504734 app-admin/hwreport # Sergey Popov (28 Aug 2014) # Security mask, wrt bug #519650 # If your application is broken due to this mask, # please file a separate bug report (23 Aug 2014) # Some compile problems with media-libs/openexr >= 2.2.0 # See https://bugs.gentoo.org/520240 for more information >=media-libs/ilmbase-2.2.0 >=media-libs/openexr-2.2.0 >=media-gfx/openexr_viewers-2.2.0 # Robin H. Johnson (04 Aug 2014) # Masked for testing, presently fails upstream testsuite: # FAIL:07:02:35 (00:00:00) db_dump/db_load(./TESTDIR.3/recd001.db:child killed: kill signal): expected 0, got 1 # FAIL:07:02:35 (00:00:00) Dump/load of ./TESTDIR.3/recd001.db failed. # FAIL:07:02:35 (00:00:00) db_verify_preop: expected 0, got 1 =sys-libs/db-6.1* # Yixun Lan (17 Jul 2014) # Masked for proper testing. (Major updates in the code). =net-misc/tinc-1.1_pre* # Ulrich Müller (15 Jul 2014) # Permanently mask sys-libs/lib-compat and its reverse dependencies, # pending multiple security vulnerabilities and QA issues. # See bugs #515926 and #510960. sys-libs/lib-compat sys-libs/lib-compat-loki games-action/mutantstorm-demo games-action/phobiaii games-fps/rtcw games-fps/unreal games-strategy/heroes3 games-strategy/heroes3-demo games-strategy/smac sys-block/afacli # Mikle Kolyada (27 Jun 2014) # Masked for proper testing. (Major updates in the code). ~dev-perl/PortageXS-0.02.12 ~dev-perl/PortageXS-0.2.12 # Robin H. Johnson (21 Jun 2014) # Needs work, but infra needs it for new VM boxes app-emulation/openstack-guest-agents-unix app-emulation/xe-guest-utilities # Tom Wijsman (6 Jun 2014) # Mask gentoo-sources ebuilds that are affected with security bug CVE-2014-3153. # # Pinkie Pie discovered an issue in the futex subsystem that allows a # local user to gain ring 0 control via the futex syscall. An # unprivileged user could use this flaw to crash the kernel (resulting # in denial of service) or for privilege escalation. # # https://bugs.gentoo.org/show_bug.cgi?id=CVE-2014-3153 # Expires (6 Jun 2016) =sys-kernel/gentoo-sources-3.2.58-r2 ~sys-kernel/gentoo-sources-3.4.90 =sys-kernel/gentoo-sources-3.4.91 ~sys-kernel/gentoo-sources-3.10.40 =sys-kernel/gentoo-sources-3.10.41 ~sys-kernel/gentoo-sources-3.12.20 =sys-kernel/gentoo-sources-3.12.21 ~sys-kernel/gentoo-sources-3.14.4 =sys-kernel/gentoo-sources-3.14.5 # Hans de Graaff (1 Jun 2014) # Mask new rubinius version for testing. Current versions have some # issues that should be solved in the forthcoming rubinius 2.3 # release. =dev-lang/rubinius-2* # Markos Chandras (30 May 2014) # Mask beta release =app-i18n/transifex-client-0.11_beta # Tom Wijsman (30 May 2014) # CVE-2012-1721 - Remote Code Execution Vulnerability # # Vulnerable: IBM Java SE 5.0 SR12-FP5 # URL: http://www.securityfocus.com/bid/53959/ dev-java/ibm-jdk-bin:1.5 # Tom Wijsman (03 May 2014) # Needs to be further tested and revised by both Java and Ruby herds. >=dev-java/jruby-1.7.12 dev-ruby/bitescript dev-ruby/bouncy-castle-java dev-ruby/duby dev-ruby/jruby-openssl dev-ruby/weakling # Matti Bickel (22 Apr 2014) # Masked slotted lua for testing app-eselect/eselect-lua =dev-lang/lua-5.1.5-r2 =dev-lang/lua-5.1.5-r100 =dev-lang/lua-5.2.3 =dev-lang/lua-5.2.3-r1 # Gilles Dartiguelongue (06 Apr 2014) # Old release, never stable, not working anymore # See bug #327837, #382667, #492474 (02 Apr 2014) # Multiple vulnerabilities, see #504724, #505860 (26 Mar 2014) # Affected by multiple vulnerabilities, #445916, #471098 and #472280 (20 Mar 2014) # Security mask of vulnerable versions, wrt bug #424167 (14 Mar 2014) # Masked for security reasons. # Do NOT remove this mask or the affected packages without speaking to # bonsaikitten first! You have been warned! (04 Mar 2014) # Dev channel releases are only for people who are developers or want more # experimental features and accept a more unstable release. www-plugins/chrome-binary-plugins:unstable # Samuli Suominen (03 Mar 2014) # gnome-extra/polkit-gnome is the "GTK+ polkit agent" and has no extra # dependencies that installing lxde-base/lxpolkit would solve, thus # the only motivation for creation of lxpolkit was to drop the word # 'gnome' from the package's name. The packages are near identical # by the outlook, determined by the used GTK+ theme. # # Raise yourself above the word 'gnome' and install the de facto GTK+ agent: # emerge -C lxpolkit # emerge -1 polkit-gnome # # Removal will happen at later date, but since there is no hurry, give it # until rest of the year. lxde-base/lxpolkit # Tim Harder (04 Feb 2014) # Mask development releases =media-sound/lilypond-2.19* # Mike Gilbert (19 Jan 2014) # To prevent accidental switching of release channels (bug 498306), # google-chrome has been split into 3 packages: # # www-client/google-chrome # www-client/google-chrome-beta # www-client/google-chrome-unstable # # The stable channel remains as www-client/google-chrome, but has been # switched to SLOT="0". # # Please unmerge your currently installed version and remerge one of the new # packages. www-client/google-chrome:beta www-client/google-chrome:stable www-client/google-chrome:unstable # Tony Vroon (13 Jan 2014) # Asterisk 12 is a short term "standard" release # containing significant architectural changes. # This is not for your production kit quite yet. =net-misc/asterisk-12* # Justin Lecher (14 Oct 2013) # Seems to break all deps - API change? >=sci-libs/metis-5 # Diego Elio Pettenò (13 Oct 2013) # Requires a NPN support in mod_ssl (www-server/apache) to work. # See #471512 for more details. www-apache/mod_spdy # Agostino Sarubbo (23 Sep 2013) # Masked because of vulnerable versions # DO NOT REMOVE OLDER VERSIONS # temporarily disabled as it also breaks s390 keywording # (18 Sep 2013) # Mask development releases of botan: # - causes many API breakages # - do not compile in some USE-flag combinations # - requires at least gcc 4.7(and possibly even 4.8 for some features) >=dev-libs/botan-1.11.0 # Julian Ospald (21 Jul 2013) # Mask all unfetchable versions and those with tons of random # bugs and segfaults (all). Don't ask for a version bump unless # there is a working release. sci-geosciences/googleearth # Chris Reffett (20 Jul 2013) # Uses vulnerable versions of bzip2, but these versions are # necessary to reconstruct older archives. Use at your own risk. =app-portage/deltup-0.4.5 # Michael Weber (17 Jul 2013) # Upstream next versions >=sys-boot/raspberrypi-firmware-1_pre # Tom Wijsman (30 Jun 2013) # Sun JDK and JRE contain critical vulnerabilities and receive no further # updates; masking to make users aware of this, users that still need this # package and have no alternative can unmask at their own risk. See bug #473830. # # This is continued by Oracle Corporation, which has acquired Sun Microsystems # in early 2010; as per https://en.wikipedia.gentoo.org/wiki/Sun_acquisition_by_Oracle # # Users are suggested to upgrade to one of the newer Oracle packages like # dev-java/oracle-jdk-bin or dev-java/oracle-jre-bin or choose another # alternative we provide; eg. the IBM JDK/JRE or the open source IcedTea. # # Most of these packages provide a jce USE flag for those whom need the # Java Cryptographic Extension Unlimited Strength Policy USE flag; whether that # works depends from VM to VM, it seems to work for most except for the IBM VMs. dev-java/sun-jdk dev-java/sun-jre-bin dev-java/sun-jce-bin # Julian Ospald (26 Jun 2013) # Depends on masked dev-lang/lua-5.2 =games-emulation/sdlmame-0.149 =games-emulation/sdlmess-0.149 # Chí-Thanh Christopher Nguyễn (25 Jun 2013) # Mask new ptlib/opal for breakage, tracked in bug #474742 # Lars Wendler (29 Apr 2014) # Adjusted mask so newer versions get covered as well. >=net-libs/ptlib-2.12.0 >=net-libs/opal-3.12.0 # Pacho Ramos (15 Jun 2013) # Upstream stalled, improper rendering (#470818), # use app-editors/efte instead. =app-editors/fte-20110708 # Patrick Lauer (21 May 2013) # broken dependencies -> uninstallable #470712 app-portage/g-ctan # Michael Weber (18 Apr 2013) # Masked due test failures =app-arch/advancecomp-1.17 # Sergey Popov (02 Apr 2013) # Masking =media-libs/ffmpegsource-2.17.4_pre753 # by maintainer's request. # This version does not work properly, see bug #464078 =media-libs/ffmpegsource-2.17.4_pre753 # Richard Freeman (24 Mar 2013) # Contains known buffer overflows. Package generally works # but should not be fed untrusted input (eg from strangers). # Masked to ensure users are aware before they install. app-text/cuneiform # Tom Wijsman (12 Mar 2013) # 2.5.* has known security and other issues due to an affected # bundled ffmpeg, see bugs #446468 and #444262. (21 Dec 2012) # madwifi has been replaced by ath5k and ath9k in kernel # drivers and is subject to numerous long standing bugs # stable wpa_supplicant sometimes wants madwifi-ng-tools #net-wireless/madwifi-ng-tools net-wireless/madwifi-ng # Pacho Ramos (25 Oct 2012) # obexd changed its API without any warning, it's recommended to ship # 0.46 until https://bugzilla.gnome.org/682106 is fixed to prevent # bluetooth-sendto breakage. >=app-mobilephone/obexd-0.47 # Robin H. Johnson (09 Feb 2012) # Needs to be slotted better =dev-libs/yaz-4* # Andreas K. Huettel (22 Mar 2012) # Even its author admits that it's an ugly hack. Crashes e.g. # firefox with kde-4.8. Unmask at your own risk. kde-misc/kgtk # Samuli Suominen (06 Mar 2012) # Masked for testing since this is known to break nearly # every reverse dependency wrt bug 407091 >=dev-lang/lua-5.2.0 # Samuli Suominen (30 Oct 2011) # Masked for security bug #294253, use only at your own risk! =media-libs/fmod-3* # Peter Volkov (23 Jul 2011) # Mask release candidates =dev-libs/guiloader-2.99.0 =dev-libs/guiloader-c++-2.99.0 =dev-util/crow-designer-2.99.0 # Marijn Schouten (07 April 2011) # Masked for number of issues, but can be used to # test against if people are impatient ;P # Known issues: # - Broken emacs support (ulm has promised to look) # - doesn't build when boehm-gc is built without threads # - no SLOTting yet! =dev-scheme/guile-2.0.0 # Markos Chandras (01 Nov 2010) # Masking alpha releases net-analyzer/ncrack # Luca Barbato (21 Jul 2010) # Not ready for public consumption, clashes with current mesa-git media-libs/shivavg # Stefan Briesenick (21 Jul 2010) # doesn't compile against latest media-libs/spandsp. # not needed anymore for Asterisk 1.6. net-misc/asterisk-spandsp_codec_g726 # Mike Frysinger (07 Mar 2010) # Very old packages that people should have upgraded away from # long ago. Courtesy mask ... time to upgrade. # Added (23 Feb 2010) # Masking libmapi as it depends on masked samba4 >=net-libs/libmapi-0.9 # Peter Alfredsen (21 Oct 2009) # Masked because this needs a patch to be applied to portage # to not install the kitchensink and everything else # into /usr/src/debug with FEATURES=installsources =dev-util/debugedit-4.4.6-r2 # Diego E. Pettenò (09 Oct 2009) # Untested yet; documented only in Russian, help is appreciated. sys-auth/pam_keystore # Diego E. Pettenò (08 Aug 2009) # on behalf of QA Team # # Mass-masking of live ebuilds; we cannot guarantee working state of # live ebuilds, nor the availability of the server hosting them. As # per QA team policy, all these need to be kept masked by default, if # available in the tree. ~app-i18n/skk-jisyo-9999 =app-misc/sleepyhead-9999 app-portage/layman-dbtools =www-plugins/google-talkplugin-9999 # Tiziano Müller (08 Apr 2009) # pre-releases >=app-editors/gobby-0.4.91 # Diego E. Pettenò (03 Jan 2009) # These packages are not supposed to be merged directly, instead # please use sys-devel/crossdev to install them. dev-libs/cygwin dev-util/mingw-runtime dev-util/mingw64-runtime dev-util/w32api sys-libs/newlib dev-embedded/msp430-binutils dev-embedded/msp430-gcc dev-embedded/msp430-gdb dev-embedded/msp430-libc dev-embedded/msp430mcu dev-embedded/avr-libc # Chris Gianelloni (03 Mar 2008) # Masking due to security bug #194607 and security bug #204067 games-fps/doom3 games-fps/doom3-cdoom games-fps/doom3-chextrek games-fps/doom3-data games-fps/doom3-demo games-fps/doom3-ducttape games-fps/doom3-eventhorizon games-fps/doom3-hellcampaign games-fps/doom3-inhell games-fps/doom3-lms games-fps/doom3-mitm games-fps/doom3-phantasm games-fps/doom3-roe games-fps/quake4-bin games-fps/quake4-data games-fps/quake4-demo # MATSUU Takuto (05 Apr 2007) # to be tested, seems unstable >=app-i18n/scim-anthy-1.3.0 # Robin H. Johnson (11 Feb 2006) # zlib interaction is badly broken. See bug #124733. =dev-vcs/cvs-1.12.13* # (01 Apr 2004) # The following packages contain a remotely-exploitable # security vulnerability and have been hard masked accordingly. # # Please see https://bugs.gentoo.org/show_bug.cgi?id=44351 for more info # games-fps/unreal-tournament-goty games-fps/unreal-tournament-strikeforce games-fps/unreal-tournament-bonuspacks games-fps/aaut