Package: netbase
Version: 4.42
Severity: serious
Tags: patch
Justification: Policy 10.7.3
Certain versions of netbase created /etc/sysctl.d/bindv6only.conf on
install, with contents that caused a severity critical bug #560238 (breaking
IPv4 on many POSIX-compliant programs). That bug has been fixed in 4.42,
however, if you ever had any of affected versions of netbase (4.38 .. 4.41)
installed on your system, that file will be still there.
Since netbase created it without asking, it needs to remove it if unmodified
as well (md5sum 289c9c015f7c4da3b77b428ada1fb72a), since its presence keeps
#560238 effectively unfixed.
-- System Information:
Debian Release: squeeze/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (150, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.32-5-686 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages netbase depends on:
ii initscripts 2.88dsf-11 scripts for initializing and shutt
ii lsb-base 3.2-23.1 Linux Standard Base 3.2 init scrip
Versions of packages netbase recommends:
ii ifupdown 0.6.10 high level tools to configure netw
netbase suggests no packages.
-- no debconf information
--- netbase.postinst.orig 2010-08-10 23:05:42.440582610 +0200
+++ netbase.postinst 2010-08-10 23:06:37.256578113 +0200
@@ -57,6 +57,20 @@
EOF
}
+# delete bindv6only.conf that was created by 4.38 .. 4.42
+remove_bindv6only_conf() {
+ if [ ! -e /etc/sysctl.d/bindv6only.conf ]; then
+ return 0
+ fi
+ if [ "$2" ] && dpkg --compare-versions "$2" ge "4.42"; then
+ return 0
+ fi
+ if ! echo "289c9c015f7c4da3b77b428ada1fb72a
/etc/sysctl.d/bindv6only.conf"|md5sum -c --status; then
+ return 0
+ fi
+ rm /etc/sysctl.d/bindv6only.conf
+}
+
case "$1" in
configure)
if [ -z "$2" ]; then
@@ -64,7 +78,7 @@
create_networks_file
fi
update_rc
- #create_bindv6only_conf "$@"
+ remove_bindv6only_conf "$@"
;;
abort-upgrade|abort-remove|abort-deconfigure)
