On Wed, Mar 20, 2019 at 12:13:56AM +0100, Sandro Knauß wrote:
> Hey,
>
> > The security bug filed against kauth in #921995 also seems to affect
> > kde4libs, the code is in kdecore/auth/backends/dbus/DBusHelperProxy.cpp?
>
> yes, it is likely, that also kde4libs is affected. kauth is KDE Frameworks.
> As
> the birth of KDE Frameworks is a split of kdelibs. I think KDE doesn't
> mention kdelibs as affected,
Shall we cherrypick/backport the patch on our own, then or rather ignore it
given the vast majority of applications uses kf5 now?
> as kdelibs is EOL so not security support by KDE
> anymore.
Ok, then let's remove the whole KDE4/Qt4 stack for bullseye (I suppose that's
the maintainer's plan anyway?)
Cheers,
Moritz
