Mitigation for Polkit Privalege Escalation

CVE-2021-4034
This commit is contained in:
Paul Edwards 2022-02-28 14:07:09 +00:00
Родитель 2bb19dc0fa
Коммит 0e87de0623
1 изменённых файлов: 2 добавлений и 4 удалений

Просмотреть файл

@ -2,10 +2,7 @@
"builders": [ "builders": [
{ {
"type": "azure-arm", "type": "azure-arm",
"subscription_id": "{{user `var_subscription_id`}}", "use_azure_cli_auth": "{{user `var_use_azure_cli_auth`}}",
"tenant_id": "{{user `var_tenant_id`}}",
"client_id": "{{user `var_client_id`}}",
"client_secret": "{{user `var_client_secret`}}",
"image_publisher": "OpenLogic", "image_publisher": "OpenLogic",
"image_offer": "CentOS", "image_offer": "CentOS",
"image_sku": "7_8", "image_sku": "7_8",
@ -30,6 +27,7 @@
], ],
"execute_command": "chmod +x {{ .Path }}; {{ .Vars }} sudo -E sh '{{ .Path }}'", "execute_command": "chmod +x {{ .Path }}; {{ .Vars }} sudo -E sh '{{ .Path }}'",
"inline": [ "inline": [
"chmod 0755 /usr/bin/pkexec",
"chmod +x /tmp/lustre-setup-scripts/*.sh", "chmod +x /tmp/lustre-setup-scripts/*.sh",
"/tmp/lustre-setup-scripts/disable-selinux.sh", "/tmp/lustre-setup-scripts/disable-selinux.sh",
"/tmp/lustre-setup-scripts/additional-pkgs.sh", "/tmp/lustre-setup-scripts/additional-pkgs.sh",