From fe3e6013961c1520acc3e0b9a9bc8ce2ad735363 Mon Sep 17 00:00:00 2001
From: Stephen Mkandawire <stephen.mkandawire@microsoft.com>
Date: Tue, 17 Oct 2023 00:32:27 +0000
Subject: [PATCH] Fix CVE-2023-38545/CVE-2023-38546 for CBL-Mariner

- Fixes CVE-2023-38545/CVE-2023-38546 curl vulnerabilities in CBL-Mariner
---
 pkg/blobplugin/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pkg/blobplugin/Dockerfile b/pkg/blobplugin/Dockerfile
index 6c99d6f07..b30b9b437 100644
--- a/pkg/blobplugin/Dockerfile
+++ b/pkg/blobplugin/Dockerfile
@@ -29,7 +29,7 @@ RUN chmod +x /blobfuse-proxy/init.sh && \
  chmod +x /blobfuse-proxy/blobfuse-proxy
 
 RUN tdnf updateinfo && \
-    tdnf install -y util-linux e2fsprogs nfs-utils quota-rpc rpcbind blobfuse2 fuse3 libcap-ng libcap ca-certificates && \
+    tdnf install -y util-linux e2fsprogs nfs-utils quota-rpc rpcbind blobfuse2 fuse3 libcap-ng libcap ca-certificates curl && \
     tdnf clean all
 
 LABEL maintainers="andyzhangx"