On Thu, May 15, 2014 at 11:41:36PM -0400, Nathan Scott wrote:
Hi Aurelien,
| On i386, pcp ships the upstream binary src/pmdas/mmv/mmvdump into
| /var/lib/pcp/pmdas/mmv/mmvdump without rebuilding it. This violates
| Debian policy and might be used by upstream to introduce backdoors or
|
- Original Message -
On Thu, May 15, 2014 at 11:41:36PM -0400, Nathan Scott wrote:
Hi Aurelien,
| On i386, pcp ships the upstream binary src/pmdas/mmv/mmvdump into
| /var/lib/pcp/pmdas/mmv/mmvdump without rebuilding it. This violates
| Debian policy and might be used by
Hi Aurelien,
| On i386, pcp ships the upstream binary src/pmdas/mmv/mmvdump into
| /var/lib/pcp/pmdas/mmv/mmvdump without rebuilding it. This violates
| Debian policy and might be used by upstream to introduce backdoors or
| other security issues.
What gives that impression? It seems to not be
Source: pcp
Version: 3.9.2
Severity: serious
Tags: security upstream
On i386, pcp ships the upstream binary src/pmdas/mmv/mmvdump into
/var/lib/pcp/pmdas/mmv/mmvdump without rebuilding it. This violates
Debian policy and might be used by upstream to introduce backdoors or
other security issues.
4 matches
Mail list logo