From e13e98a7d99aa3424fceb838b975a085bf6534c8 Mon Sep 17 00:00:00 2001
From: Patroklos Papapetrou <ppapapetrou76@gmail.com>
Date: Mon, 8 Sep 2025 13:21:57 +0300
Subject: [PATCH] upgrade sqlite in docker image to address CVE-2025-6965

---
 Dockerfile | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index f338d3cd13802..c63011a18fa28 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -55,6 +55,9 @@ RUN groupadd -g $ARGOCD_USER_ID argocd && \
     apt-get clean && \
     rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
 
+# To make sure that the latesst version of sqlite is installed that addresses this CVE-2025-6965
+RUN apt update && apt install --only-upgrade libsqlite3-0
+
 COPY hack/gpg-wrapper.sh \
     hack/git-verify-wrapper.sh \
     entrypoint.sh \