From 4a5e1aa2dfe83ea56954e5afb82a903714f15601 Mon Sep 17 00:00:00 2001
From: Luca Comellini <luca.com@gmail.com>
Date: Sat, 7 May 2022 15:08:03 +0200
Subject: [PATCH] Update packages for CVE-2022-27404

---
 build/Dockerfile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/build/Dockerfile b/build/Dockerfile
index ac65b73e08..f613bca5c9 100644
--- a/build/Dockerfile
+++ b/build/Dockerfile
@@ -31,8 +31,8 @@ FROM docker.io/library/nginx:1.21.6-alpine AS alpine
 
 RUN --mount=type=bind,from=alpine-opentracing-lib,target=/tmp/ot/ \
 	apk add --no-cache libcap libstdc++ \
-	# temp fix for CVE-2022-1271 and CVE-2022-22576
-	&& apk upgrade --no-cache xz-libs curl libcurl \
+	# temp fix for CVE-2022-1271, CVE-2022-22576 and CVE-2022-27404
+	&& apk upgrade --no-cache xz-libs curl libcurl freetype \
 	&& cp -av /tmp/ot/usr/local/lib/libopentracing.so* /tmp/ot/usr/local/lib/libjaegertracing*so* /tmp/ot/usr/local/lib/libzipkin*so* /tmp/ot/usr/local/lib/libdd*so* /tmp/ot/usr/local/lib/libyaml*so* /usr/local/lib/ \
 	&& cp -av /tmp/ot/usr/lib/nginx/modules/ngx_http_opentracing_module.so /usr/lib/nginx/modules/ \
 	&& ldconfig /usr/local/lib/