Comment 7 for bug 898845

Cosme

I think it is very important that your packaging be reconciled with the packaging currently in Debian. Using embedded copies of libraries as freeimage does is a serious policy violation (http://www.debian.org/doc/debian-policy/ch-source.html#s-embeddedfiles) and security issue.

The security team only updates the globally shipped copies of libraries like libjpeg and libpng, relying on packages using them to pick up the update through dynamic linking. Packages containing embedded copies of libraries are not updated in response to security updates, leaving them vulnerable.