This is a complex package and it has already had a CVE, and a similar bug has been recently opened that looks as though packages being "hidden" might still be an issue: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793106
I see no particular issues with the package (other than the complexity of its source), but I think it would benefit a quick Security review. ** Bug watch added: Debian Bug tracker #793106 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=793106 ** Changed in: htop (Ubuntu) Assignee: Mathieu Trudel-Lapierre (cyphermox) => Ubuntu Security Team (ubuntu-security) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1644364 Title: [MIR] htop To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/htop/+bug/1644364/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs