On Tue, Jan 25, 2005 at 05:03:43AM -0800, Debian Bug Tracking System wrote: > * Fixed handling of temporary files (partly security relevant), thanks a > lot > to Javier Fernández-Sanguino Peña for spotting these. Closes: #291962 (...) > - All other files mentioned in the bug report are not used for building > postgresql. pg_upgrade is not shipped, so does not need to be fixed as > well.
Even if those are not used in the package. Please fix these issues, it will not be the first time (or the last) that insecure code which was not provided in the package is either copied over to some other package (reused) or included in a later release. It also helps in reducing false positives when searching Debian's source code archive for this particular type of bugs. Thanks Javier
signature.asc
Description: Digital signature
