Bug#746996: pcp ships an upstream binary without rebuilding it

- Original Message - > On Thu, May 15, 2014 at 11:41:36PM -0400, Nathan Scott wrote: > > Hi Aurelien, > > > > | On i386, pcp ships the upstream binary src/pmdas/mmv/mmvdump into > > | /var/lib/pcp/pmdas/mmv/mmvdump without rebuilding it. This violates > > | Debian policy and might be use

Bug#746996: pcp ships an upstream binary without rebuilding it

On Thu, May 15, 2014 at 11:41:36PM -0400, Nathan Scott wrote: > Hi Aurelien, > > | On i386, pcp ships the upstream binary src/pmdas/mmv/mmvdump into > | /var/lib/pcp/pmdas/mmv/mmvdump without rebuilding it. This violates > | Debian policy and might be used by upstream to introduce backdoors or >

Bug#746996: pcp ships an upstream binary without rebuilding it

Hi Aurelien, | On i386, pcp ships the upstream binary src/pmdas/mmv/mmvdump into | /var/lib/pcp/pmdas/mmv/mmvdump without rebuilding it. This violates | Debian policy and might be used by upstream to introduce backdoors or | other security issues. What gives that impression? It seems to not be

Bug#746996: pcp ships an upstream binary without rebuilding it

Source: pcp Version: 3.9.2 Severity: serious Tags: security upstream On i386, pcp ships the upstream binary src/pmdas/mmv/mmvdump into /var/lib/pcp/pmdas/mmv/mmvdump without rebuilding it. This violates Debian policy and might be used by upstream to introduce backdoors or other security issues.