From e5dc9fac33c1fafb2b9dd36cdb7f6fa8eeab2b9e Mon Sep 17 00:00:00 2001
From: Dongsu Park <dpark@linux.microsoft.com>
Date: Tue, 9 Aug 2022 12:25:18 +0200
Subject: [PATCH] profiles: enable dev-vcs/git 2.37.1

To be able to address CVE-2022-29187, we need to accept keywords
and unmask dev-vcs/git 2.37.1.
---
 .../profiles/coreos/base/package.accept_keywords              | 4 ++--
 .../coreos-overlay/profiles/coreos/base/package.unmask        | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords
index 88bc98221a..5cf44cf941 100644
--- a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords
+++ b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.accept_keywords
@@ -59,8 +59,8 @@
 # FIPS support is still being tested
 =sys-fs/cryptsetup-2.4.3-r1 ~amd64 ~arm64
 
-# Required for CVE-2022-24765
-=dev-vcs/git-2.35.3 ~amd64 ~arm64
+# Required for CVE-2022-29187
+=dev-vcs/git-2.37.1 ~amd64 ~arm64
 
 =sys-power/acpid-2.0.33 ~amd64 ~arm64
 
diff --git a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.unmask b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.unmask
index fdc50f0aaa..6436d15bbb 100644
--- a/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.unmask
+++ b/sdk_container/src/third_party/coreos-overlay/profiles/coreos/base/package.unmask
@@ -11,4 +11,4 @@
 
 # Overwrite portage-stable mask - we want to use this version of git
 # for security fixes.
-=dev-vcs/git-2.35.3
+=dev-vcs/git-2.37.1