From 191c6d42e62e33227a5ce2c8eeb8d8e2dc924cf4 Mon Sep 17 00:00:00 2001
From: nickboldt <nboldt@redhat.com>
Date: Sun, 14 Apr 2019 18:18:22 -0400
Subject: [PATCH] RHSA-2019:0679-02 and CVE-2019-9636 errata 40636

Change-Id: I16be2000f13bf7ed45d56527f2a262c11b631daf
Signed-off-by: nickboldt <nboldt@redhat.com>
---
 Dockerfile | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index 588ba65cf..adfe4e054 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -43,5 +43,8 @@ LABEL summary="$SUMMARY" \
 
 COPY --from=builder /tmp/che-operator/che-operator /usr/local/bin/che-operator
 COPY --from=builder /go/src/github.com/eclipse/che-operator/deploy/keycloak_provision /tmp/keycloak_provision
-RUN yum list installed && echo "End Of Installed Packages"
+  # CVE fix for RHSA-2019:0679-02 https://pipeline.engineering.redhat.com/freshmakerevent/8717
+  # CVE-2019-9636 errata 40636 - update python and python-libs to 2.7.5-77.el7_6
+RUN yum update -y libssh2 python-libs python && \
+    yum list installed && echo "End Of Installed Packages"
 CMD ["che-operator"]