From 1c916799eb503992c44fa7d21943b5607664ec9c Mon Sep 17 00:00:00 2001
From: andyzhangx <xiazhang@microsoft.com>
Date: Tue, 19 Apr 2022 10:46:22 +0000
Subject: [PATCH] fix: CVE-2022-1271 in image build

---
 pkg/blobplugin/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pkg/blobplugin/Dockerfile b/pkg/blobplugin/Dockerfile
index 7f727bc05..885f642ec 100644
--- a/pkg/blobplugin/Dockerfile
+++ b/pkg/blobplugin/Dockerfile
@@ -21,7 +21,7 @@ COPY ${binary} /blobplugin
 RUN apt update && apt-mark unhold libcap2
 RUN clean-install ca-certificates uuid-dev util-linux mount udev wget e2fsprogs nfs-common netbase
 # install updated packages to fix CVE issues
-RUN clean-install libgmp10 bsdutils libssl1.1 openssl libc-bin libsystemd0 zlib1g
+RUN clean-install libgmp10 bsdutils libssl1.1 openssl libc-bin libsystemd0 zlib1g gzip liblzma5
 RUN mkdir /blobfuse-proxy/
 COPY ./_output/blobfuse-proxy.deb /blobfuse-proxy/
 ARG ARCH=amd64