This bug was fixed in the package iptables - 1.8.5-3ubuntu1
---
iptables (1.8.5-3ubuntu1) groovy; urgency=medium
* Merge with Debian unstable (LP: #1894195). Remaining changes:
- debian/control: correct Breaks/Replaces for ipt_kernel_headers.h
move from libiptc-dev to libi
** Changed in: iptables (Ubuntu)
Status: New => Fix Committed
** Changed in: iptables (Ubuntu)
Assignee: (unassigned) => Alex Murray (alexmurray)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/b
Right, yes, please do go ahead. It was pointed out before that this
would be desirable after we switched away from -legacy due to the nature
of the fixes.
I had thought from the diff of debian/tests/control that the test
coverage of the nft backend was being reduced, but then I took a look at
http
Good point about the changelog - I have removed that line and rebuilt.
Attaching the debdiff here for the release team to review.
** Patch added: "iptables_1.8.5-3ubuntu1.debdiff"
https://bugs.launchpad.net/ubuntu/+source/iptables/+bug/1894195/+attachment/5413736/+files/iptables_1.8.5-3ubuntu1
I tested it and also backported for focal in my PPA (
https://launchpad.net/~oibaf/+archive/ubuntu/test/+packages?field.name_filter=&field.status_filter=published&field.series_filter=focal
): it works as intended.
I think this should be removed from the 1.8.5-3ubuntu1 changelog:
* Merge with Debi
I have done the merge and uploaded it to the security-proposed PPA -
https://launchpad.net/~ubuntu-security-proposed/+archive/ubuntu/ppa -
and have confirmed the iptables autopkgtest tests all pass as well as
the ufw tests.
Oibaf - since you requested this, would you be able to also test this?
--
I've attached the upstream changelog.
The upstream release contains a lot of fixes for nftables but also
rewrites and fixes in other areas.
Landing the merge does have risks, but IMO it would be better ship it in
20.10 than the current version.
I've asked the Security Team in June if they could
** Attachment added: "changes-iptables-1.8.5.txt"
https://bugs.launchpad.net/ubuntu/+source/iptables/+bug/1894195/+attachment/5411820/+files/changes-iptables-1.8.5.txt
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.la
** Description changed:
Please merge iptables 1.8.5-3 (main) from Debian sid (main)
Explanation of FeatureFreeze exception:
- Current iptables is using the same upstream version in focal, which had
problem with the nft backend and was then reverted to the legacy backend.
- 1.8.5 has many f
