Stackato 2.10.X Security Fix - container sudo fix

Posted by lorned on 2013-10-18 15:33
OS: All / Any | Product: Stackato | tags: 2.10.4 2.10.6 container patch Security stackato sudo
Question: 

Any recent security patches for Stackato?

Answer: 

We've generated a second patch that needs to be applied on top of the initial apt-get-wrapper patch to fix an issue that this was causing with unprivileged users in containers.

###2.10.4

First step is to install everything at http://community.activestate.com/node/10157. This will include http://get.stackato.com/patch/2.10/stackato-2.10.4-apt-get-wrapper.sh, which has an issue as described above. This can be corrected with the patch downloaded at http://get.stackato.com/patch/2.10/stackato-2.10.4-apt-get-wrapper-fix.sh. Patch instructions are to upload the patch to all nodes running 'DEA' or 'Stager' in your cluster and execute via 'sh stackato-2.10.4-apt-get-wrapper-fix.sh'. Upon doing this you should restart your stager and/or dea roles. Any future applications deployed will have this fix enabled.

###2.10.6

This patch is available via the kato patch command and can be installed by executing 'kato patch update' followed by 'kato patch install'.