Filing under wireshark because libsmi does not have its own component in bugzilla. Description of problem: The libsmi rpm tries to install it files as the build user (mockbuild in CentOS, brewbuild in RHEL). This looks like a security problem to me if libsmi is installed on a system where this user is available. It's a nuisance (throwing errors) on all other systems. Version-Release number of selected component (if applicable): libsmi.x86_64 0:0.4.5-2 How reproducible: Install libsmi Steps to Reproduce: 1. Install libsmi 2. 3. Actual results: Installing: libsmi ######################## [1/3]warning: user mockbuild does not exist - using root warning: group mockbuild does not exist - using root Installing: libsmi ######################## [1/3]warning: user mockbuild does not exist - using root Expected results: No such warnings. Additional info: The spec file is missing a %defattr line which would give those files to root. It's just a small nuisance on systems which don't have this user, but it might be a security risc on machines where packages are built on.
This bug has been reported to the CentOS bug tracker <http://bugs.centos.org/view.php?id=2624>.
Bug 430298 contains a patch.
libsmi in RHEL 5 has the same problem.
Already fixed in Fastrack. The fixed package will be available in 4.7, too. *** This bug has been marked as a duplicate of 429669 ***