
# List of packages where security support is limited

# File format: Columns, separated by one or more space characters
# 1. source package name
# 2. Descriptive text or URL with more details (optional)
#    In the program's output, this is prefixed with "Details:"

adns            Stub resolver that should only be used with trusted recursors
binutils        Only suitable for trusted content; see https://lists.debian.org/msgid-search/87lfqsomtg.fsf@mid.deneb.enyo.de
ganglia         See README.Debian.security, only supported behind an authenticated HTTP zone, #702775
ganglia-web     See README.Debian.security, only supported behind an authenticated HTTP zone, #702776
golang*         See https://www.debian.org/releases/buster/amd64/release-notes/ch-information.en.html#golang-static-linking
kde4libs        khtml has no security support upstream, only for use on trusted content
khtml           khtml has no security support upstream, only for use on trusted content, see #1004293
mozjs52         Not covered by security support, only suitable for trusted content
mozjs60         Not covered by security support, only suitable for trusted content
ocsinventory-server Only supported behind an authenticated HTTP zone
qtwebengine-opensource-src No security support upstream and backports not feasible, only for use on trusted content
qtwebkit        No security support upstream and backports not feasible, only for use on trusted content
qtwebkit-opensource-src No security support upstream and backports not feasible, only for use on trusted content
sql-ledger      Only supported behind an authenticated HTTP zone
zoneminder      See README.Debian.security, only supported behind an authenticated HTTP zone, #922724
