From 61fde6cbed2da9ade2a931787d81c4fc9789505e Mon Sep 17 00:00:00 2001
From: Dongsu Park <dpark@linux.microsoft.com>
Date: Thu, 28 Oct 2021 10:19:38 +0200
Subject: [PATCH] profiles: accept keywords for wget 1.21.2.

Accept both keywords ~amd64 and ~arm64, mainly to address
CVE-2021-31879.
---
 .../profiles/coreos/base/package.accept_keywords              | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords
index 70296fded5..a000297660 100644
--- a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords
+++ b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords
@@ -115,3 +115,7 @@ dev-util/checkbashisms
 
 # dev-libs/openssl-3.0.0 is still in testing phase at this point
 =dev-libs/openssl-3.0.0 ~amd64 ~arm64
+
+# To address security issues like CVE-2021-31879, we need to accept
+# keywords for wget 1.21.2.
+=net-misc/wget-1.21.2 ~amd64 ~arm64