From 40c510cb9ab1218665619f7832e463323479ea8e Mon Sep 17 00:00:00 2001
From: Michał Górny <mgorny@gentoo.org>
Date: Wed, 13 Mar 2019 18:04:15 +0100
Subject: package.mask: Last rite vulnerable dev-php/php-openid
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bug: https://bugs.gentoo.org/572882
Signed-off-by: Michał Górny <mgorny@gentoo.org>
---
 profiles/package.mask | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/profiles/package.mask b/profiles/package.mask
index 9c5f9ba3e24c..77a07a4dbae2 100644
--- a/profiles/package.mask
+++ b/profiles/package.mask
@@ -29,6 +29,12 @@
 
 #--- END OF EXAMPLES ---
 
+# Michał Górny <mgorny@gentoo.org> (13 Mar 2019)
+# Contains vulnerability (CVE-2016-2049) that has not been resolved
+# for almost 3 years.  No reverse dependencies.
+# Removal in 30 days.  Bug #572882.
+dev-php/php-openid
+
 # Michał Górny <mgorny@gentoo.org> (13 Mar 2019)
 # The eselect module is obsolete, now that dev-lang/gnat-gpl is the only
 # implementation in Gentoo.  It is unmaintained and has unresolved QA
-- 
cgit v1.2.3-65-gdbad