Upgrade libcurl (CVE-2020-8231)

https://build.opnfv.org/ci/view/xtesting-trivy/job/xtesting-opnfv-xtesting-iruya-trivy/7/console

Change-Id: I9de801f32e7dd1b4cfe3a56ab69b54b7d69b4fe2
Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com>
(cherry picked from commit b2ecf5d4b087b43b57c54663e7f5cedae728cef0)

diff --git a/docker/core/Dockerfile b/docker/core/Dockerfile
index 58c07a5..b5d9c7e 100644 (file)
--- a/docker/core/Dockerfile
+++ b/docker/core/Dockerfile
@@ -5,6 +5,7 @@ ARG OPENSTACK_TAG=stable/rocky
 
 RUN apk -U upgrade && \
     apk --no-cache add --update python py-pip bash git mailcap libxml2 libxslt && \
+    apk --no-cache add --update libcurl --repository=http://dl-cdn.alpinelinux.org/alpine/v3.10/main && \
     apk --no-cache add --virtual .build-deps --update \
         python-dev build-base libxml2-dev libxslt-dev && \
     case $(uname -m) in aarch*|arm*) CFLAGS="-O0" \