qtwebkit (Qt4's WebKit binding) is full of hundreds of known CVEs and hasn't seen a security patch in years. For the same reason, WebKitGtk has been removed from Fedora [1]. How about a plan to do the same with qtwebkit? I've already opened a bug report against qtwebkit [2] but it does not seem to have any effect. [1] https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx/thread/S3VHBCPMPVZ3NBKR7FQZQE6HBUHVEZ3D/ [2] https://bugzilla.redhat.com/show_bug.cgi?id=1711519 _______________________________________________ security mailing list -- security@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to security-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/security@xxxxxxxxxxxxxxxxxxxxxxx
