diff -Nru frr-7.2.1/debian/changelog frr-7.2.1/debian/changelog
--- frr-7.2.1/debian/changelog	2022-07-19 20:40:11.000000000 +0000
+++ frr-7.2.1/debian/changelog	2022-10-28 17:12:00.000000000 +0000
@@ -1,3 +1,11 @@
+frr (7.2.1-1ubuntu0.2) focal; urgency=medium
+
+  * d/frr.postinst: don't change log ownership if the syslog user
+    doesn't exist. Thanks to Alessandro Ratti
+    <alessandro.ratti@exoscale.ch> for the fix (LP: #1991812).
+
+ -- Andreas Hasenack <andreas@canonical.com>  Fri, 28 Oct 2022 14:12:00 -0300
+
 frr (7.2.1-1ubuntu0.1) focal; urgency=medium
 
   * Fix logging with Ubuntu's unprivileged rsyslog (LP: #1958162):
diff -Nru frr-7.2.1/debian/frr.postinst frr-7.2.1/debian/frr.postinst
--- frr-7.2.1/debian/frr.postinst	2022-07-19 20:39:58.000000000 +0000
+++ frr-7.2.1/debian/frr.postinst	2022-10-28 17:12:00.000000000 +0000
@@ -50,26 +50,28 @@
 # fix logging for Ubuntu, which does not run rsyslog as root (LP: #1958162),
 # and upgrades from quagga (what the block above used to do also for /var/log)
 
-# frr user was created above, this really shouldn't fail
-frruid=`getent passwd frr | cut -d : -f 3`
-frrgid=`getent group frr | cut -d : -f 3`
+if getent passwd syslog > /dev/null; then
+    # frr user was created above, this really shouldn't fail
+    frruid=`getent passwd frr | cut -d : -f 3`
+    frrgid=`getent group frr | cut -d : -f 3`
 
-find \
-    /var/log/frr \
-        \( -uid 0 -o -uid $quaggauid -o -uid $frruid \) -a \
-        \( -gid 0 -o -gid $quaggauid -o -gid $frrgid \) | \
-    while read filename; do
+    find \
+        /var/log/frr \
+            \( -uid 0 -o -uid $quaggauid -o -uid $frruid \) -a \
+            \( -gid 0 -o -gid $quaggauid -o -gid $frrgid \) | \
+        while read filename; do
 
-    # don't chown anything that has ACLs (but don't fail if we don't
-    # have getfacl)
-    if { getfacl -c "$filename" 2>/dev/null || true; } \
-        | egrep -q -v '^((user|group|other)::|$)'; then
-        :
-    else
-        chown syslog:adm "$filename"
-        chmod o-rwx "$filename"
-    fi
-done
+        # don't chown anything that has ACLs (but don't fail if we don't
+        # have getfacl)
+        if { getfacl -c "$filename" 2>/dev/null || true; } \
+            | egrep -q -v '^((user|group|other)::|$)'; then
+            :
+        else
+            chown syslog:adm "$filename"
+            chmod o-rwx "$filename"
+        fi
+    done
+fi
 
 # fix misconfigured vtysh.conf & frr.conf ownership caused by config save
 # mishandling in earlier FRR (and Quagga) versions