From 30c4c345f0a8a00395f07ed63e17379ef0929e28 Mon Sep 17 00:00:00 2001
From: Matt Collins <matt.collins@thetradedesk.com>
Date: Thu, 16 Apr 2026 05:09:02 +0000
Subject: [PATCH] UID2-6929: CVE-2026-40200 upgrade musl/musl-utils to
 1.2.5-r23

---
 Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index 08320638c..e7846f174 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -3,7 +3,7 @@ FROM eclipse-temurin@sha256:693c22ea458d62395bac47a2da405d0d18c77b205211ceec4846
 
 # For Amazon Corretto Crypto Provider
 # CVE-2026-28390: upgrade libcrypto3/libssl3 to 3.5.6-r0+ (UID2-6905)
-RUN apk add --no-cache gcompat && apk upgrade --no-cache libcrypto3 libssl3
+RUN apk add --no-cache gcompat && apk upgrade --no-cache libcrypto3 libssl3 musl musl-utils
 
 WORKDIR /app
 EXPOSE 8080