Closed d-h1 closed 1 year ago
@leostarcevic looks like the patches for openssh do not cleanly apply. Not sure why it doesn't fail the build.
Can we move the SSH upgrade to a new PR and triage that separately?
looks like the patches for openssh do not cleanly apply. Not sure why it doesn't fail the build.
@osterman hmm, correct! not sure why but it seems that they fail in existing master as well
Can we move the SSH upgrade to a new PR and triage that separately?
Sure, I can split it up!
Superseded by https://github.com/cloudposse/bastion/pull/70
Password: chsh: PAM: Authentication token manipulation error
because it asks for a password after alpine 3.8.4 and 3.9.2(?!) patched CVE-2019-5021 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5021)