From f0c2d4b4c2e8eec72a3a783352ae80c5acfdce40 Mon Sep 17 00:00:00 2001
From: Filippe Spolti <fspolti@redhat.com>
Date: Mon, 20 Jan 2025 13:27:06 -0300
Subject: [PATCH] chore: Update dependencies  (#97)

chore:  Fixes the following CVEs:
CVE-2023-45288 - Non-linear parsing of case-insensitive content in
golang.org/x/net/html
CVE-2024-45337 - Misuse of ServerConfig.PublicKeyCallback may cause
authorization bypass in golang.org/x/crypto

Signed-off-by: Spolti <fspolti@redhat.com>
---
 go.mod | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/go.mod b/go.mod
index 8f489d9d..b6549372 100644
--- a/go.mod
+++ b/go.mod
@@ -71,7 +71,7 @@ require (
 )
 
 replace (
-	// Fixes CVE-2024-45337
+	// Fixes CVE-2024-45338
 	golang.org/x/net => golang.org/x/net v0.33.0
 	// remove when upgrade to controller-runtime 0.15.x or apimachinery to 0.27.x
 	// Fixes SNYK-GOLANG-K8SIOAPIMACHINERYPKGUTILRUNTIME-8367153