Package: netbase Version: 4.42 Severity: serious Tags: patch Justification: Policy 10.7.3
Certain versions of netbase created /etc/sysctl.d/bindv6only.conf on install, with contents that caused a severity critical bug #560238 (breaking IPv4 on many POSIX-compliant programs). That bug has been fixed in 4.42, however, if you ever had any of affected versions of netbase (4.38 .. 4.41) installed on your system, that file will be still there. Since netbase created it without asking, it needs to remove it if unmodified as well (md5sum 289c9c015f7c4da3b77b428ada1fb72a), since its presence keeps #560238 effectively unfixed. -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (150, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages netbase depends on: ii initscripts 2.88dsf-11 scripts for initializing and shutt ii lsb-base 3.2-23.1 Linux Standard Base 3.2 init scrip Versions of packages netbase recommends: ii ifupdown 0.6.10 high level tools to configure netw netbase suggests no packages. -- no debconf information
--- netbase.postinst.orig 2010-08-10 23:05:42.440582610 +0200 +++ netbase.postinst 2010-08-10 23:06:37.256578113 +0200 @@ -57,6 +57,20 @@ EOF } +# delete bindv6only.conf that was created by 4.38 .. 4.42 +remove_bindv6only_conf() { + if [ ! -e /etc/sysctl.d/bindv6only.conf ]; then + return 0 + fi + if [ "$2" ] && dpkg --compare-versions "$2" ge "4.42"; then + return 0 + fi + if ! echo "289c9c015f7c4da3b77b428ada1fb72a /etc/sysctl.d/bindv6only.conf"|md5sum -c --status; then + return 0 + fi + rm /etc/sysctl.d/bindv6only.conf +} + case "$1" in configure) if [ -z "$2" ]; then @@ -64,7 +78,7 @@ create_networks_file fi update_rc - #create_bindv6only_conf "$@" + remove_bindv6only_conf "$@" ;; abort-upgrade|abort-remove|abort-deconfigure)