diff --git a/sdk_container/src/third_party/coreos-overlay/coreos/config/env/net-misc/curl b/sdk_container/src/third_party/coreos-overlay/coreos/config/env/net-misc/curl
deleted file mode 100644
index 01295e8c0e..0000000000
--- a/sdk_container/src/third_party/coreos-overlay/coreos/config/env/net-misc/curl
+++ /dev/null
@@ -1,6 +0,0 @@
-# Since curl now builds static libraries, there are linking failures due to the
-# lack of -fPIC when building under src/ .  The project is actually configured
-# to use -fPIC when the compiler is wrapped by libtool, but that only happens
-# under lib/ and not src/ .
-CFLAGS="${CFLAGS} -fPIC"
-CXXFLAGS="${CXXFLAGS} -fPIC"
diff --git a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords
index b9b277b21b..b901e5d398 100644
--- a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords
+++ b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords
@@ -46,7 +46,7 @@
 =sys-fs/cryptsetup-2.4.3-r1 ~amd64 ~arm64
 
 # Required for CVE-2022-29187
-=dev-vcs/git-2.37.1 ~amd64 ~arm64
+=dev-vcs/git-2.37.3 ~amd64 ~arm64
 
 =sys-power/acpid-2.0.33 ~amd64 ~arm64
 
@@ -54,9 +54,3 @@
 =sys-libs/liburing-2.1-r2 ~amd64 ~arm64
 
 =app-crypt/adcli-0.9.1-r2 ~amd64 ~arm64
-
-# Required for CVE-2022-27239, CVE-2022-29869
-=net-fs/cifs-utils-6.15 ~amd64 ~arm64
-
-# Required to fix toolchains build during fsscript in stage 4 of SDK build.
-=sys-devel/crossdev-20220709 ~amd64 ~arm64
diff --git a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.unmask b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.unmask
index 6436d15bbb..4a21035df6 100644
--- a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.unmask
+++ b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.unmask
@@ -11,4 +11,4 @@
 
 # Overwrite portage-stable mask - we want to use this version of git
 # for security fixes.
-=dev-vcs/git-2.37.1
+=dev-vcs/git-2.37.3