Mitigation for Polkit Privalege Escalation

CVE-2021-4034

packer/azurehpc-lustre-2.12.5.json

@@ -2,10 +2,7 @@
     "builders": [
         {
             "type": "azure-arm",
-            "subscription_id": "{{user `var_subscription_id`}}",
-            "tenant_id": "{{user `var_tenant_id`}}",
-            "client_id": "{{user `var_client_id`}}",
-            "client_secret": "{{user `var_client_secret`}}",
+            "use_azure_cli_auth": "{{user `var_use_azure_cli_auth`}}",
             "image_publisher": "OpenLogic",
             "image_offer": "CentOS",
             "image_sku": "7_8",
@@ -30,6 +27,7 @@
             ],
             "execute_command": "chmod +x {{ .Path }}; {{ .Vars }} sudo -E sh '{{ .Path }}'",
             "inline": [
+                "chmod 0755 /usr/bin/pkexec",
                 "chmod +x /tmp/lustre-setup-scripts/*.sh",
                 "/tmp/lustre-setup-scripts/disable-selinux.sh",
                 "/tmp/lustre-setup-scripts/additional-pkgs.sh",