From b58fa928e934ab996a04b5900e1c3f71877b8d11 Mon Sep 17 00:00:00 2001
From: Colin Adler <colin1adler@gmail.com>
Date: Mon, 31 Jul 2023 15:08:50 +0000
Subject: [PATCH] security: bump openssl in base image

Fixes https://nvd.nist.gov/vuln/detail/CVE-2023-2975 and https://nvd.nist.gov/vuln/detail/CVE-2023-3446
---
 scripts/Dockerfile.base | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/scripts/Dockerfile.base b/scripts/Dockerfile.base
index 171857e5d0e27..738b66f01090e 100644
--- a/scripts/Dockerfile.base
+++ b/scripts/Dockerfile.base
@@ -12,6 +12,8 @@ RUN apk add --no-cache \
 		bash \
 		jq \
 		git \
+		# Fixes CVE-2023-3446 and CVE-2023-2975. Only necessary until Alpine 3.18.3.
+		openssl \
 		openssh-client && \
 	# Use the edge repo, since Terraform doesn't seem to be backported to 3.18.
 	apk add --no-cache --repository=https://dl-cdn.alpinelinux.org/alpine/edge/community \