Comment 2 for bug 1894195

I've attached the upstream changelog.

The upstream release contains a lot of fixes for nftables but also rewrites and fixes in other areas.

Landing the merge does have risks, but IMO it would be better ship it in 20.10 than the current version.

I've asked the Security Team in June if they could merge the new upstream from Debian, but they could not find time for that AFAIK.

I\m +1 on the FFe, but someone still needs to actually do the merge and landing.