From 19ebbd70575a5148d62ae022a71ecf3ac8358767 Mon Sep 17 00:00:00 2001
From: Jannik Badenhop <jannik.badenhop@capgemini.com>
Date: Thu, 15 Feb 2024 12:31:58 +0000
Subject: [PATCH] Update Base image version, so that installing curl 8.5 with
 apk is possible, which addresses CVE-2023-38545

---
 Dockerfile | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index a305409..3f231ac 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,4 +1,4 @@
-FROM nginx:1.17.10-alpine
+FROM nginx:1.21-alpine
 
 EXPOSE 8000
 CMD ["/sbin/entrypoint.sh"]
@@ -54,6 +54,8 @@ RUN apk add --no-cache --update \
     wget sqlite git curl bash grep \
     supervisor
 
+# upgrade curl to address CVE-2023-38545 and liburl as dependency
+RUN apk upgrade --no-cache --update -U libcurl curl
 # forward request and error logs to docker log collector
 RUN ln -sf /dev/stdout /var/log/nginx/access.log && \
     ln -sf /dev/stderr /var/log/nginx/error.log && \