From 3de59c368da0fbd62a1c648881b06f48ec0e1d9e Mon Sep 17 00:00:00 2001
From: Luca Comellini <luca.com@gmail.com>
Date: Thu, 29 Sep 2022 19:39:21 -0700
Subject: [PATCH] Update packages for CVE-2022-40674

---
 build/Dockerfile | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/build/Dockerfile b/build/Dockerfile
index a842de0c1c..838b84adaa 100644
--- a/build/Dockerfile
+++ b/build/Dockerfile
@@ -16,6 +16,8 @@ FROM nginx:1.23.1 AS debian
 RUN --mount=type=bind,from=opentracing-lib,target=/tmp/ot/ \
 	apt-get update \
 	&& apt-get install --no-install-recommends --no-install-suggests -y libcap2-bin \
+	# temp fix for CVE-2022-40674
+	&& apt-get install -y libexpat1 \
 	&& rm -rf /var/lib/apt/lists/* \
 	&& cp -av /tmp/ot/usr/local/lib/libopentracing.so* /tmp/ot/usr/local/lib/libjaegertracing*so* /tmp/ot/usr/local/lib/libzipkin*so* /tmp/ot/usr/local/lib/libdd*so* /tmp/ot/usr/local/lib/libyaml*so* /usr/local/lib/ \
 	&& cp -av /tmp/ot/usr/lib/nginx/modules/ngx_http_opentracing_module.so /usr/lib/nginx/modules/ \