From 2a4b72c1eee16c4e5d2b6d5ee24da3f8a5ba867e Mon Sep 17 00:00:00 2001
From: Yu-An Lin <ylin@proofpoint.com>
Date: Tue, 21 Jul 2020 11:43:46 -0700
Subject: [PATCH] update libsystemd0 for CVE-2020-1712

---
 zulu-11/Dockerfile | 3 ++-
 zulu-8/Dockerfile  | 7 ++++---
 2 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/zulu-11/Dockerfile b/zulu-11/Dockerfile
index c28d684..1bfdeb9 100644
--- a/zulu-11/Dockerfile
+++ b/zulu-11/Dockerfile
@@ -10,6 +10,7 @@ COPY --from=dumb-init-builder /dumb-init/dumb-init /usr/local/bin/dumb-init
 RUN apt-get update && \
    DEBIAN_FRONTEND=noninteractive apt-get install --assume-yes \
        # These packages are security updates
-       libgnutls30=3.6.7-4+deb10u4         
+       libgnutls30=3.6.7-4+deb10u4 \
+       libsystemd0=241-7~deb10u4
 
 ENTRYPOINT ["/usr/local/bin/dumb-init"]
diff --git a/zulu-8/Dockerfile b/zulu-8/Dockerfile
index f0b0e15..e2aa3b5 100644
--- a/zulu-8/Dockerfile
+++ b/zulu-8/Dockerfile
@@ -6,9 +6,10 @@ RUN cd dumb-init && make
 
 FROM docker.io/azul/zulu-openjdk-debian:8u252-8.46.0.19
 
-#RUN apt-get update && \
-#    DEBIAN_FRONTEND=noninteractive apt-get install --assume-yes \
-                     # These packages are security updates
+RUN apt-get update && \
+   DEBIAN_FRONTEND=noninteractive apt-get install --assume-yes \
+       # These packages are security updates
+       libsystemd0=241-7~deb10u4
 
 COPY --from=dumb-init-builder /dumb-init/dumb-init /usr/local/bin/dumb-init
 ENTRYPOINT ["/usr/local/bin/dumb-init"]