Re: Or backport the fix
You can patch the older version, but it has the same problem/advantage as poisoning the package. The hash of that specific version changes. That should let some build systems fail if they have previously seen that package. IMO, if it is (mostly) the same behavior in the build, then you should pull the old package and force a fix of the build scripts.