From 8d2370da76c067fb424c49a522b263e1b99ec056 Mon Sep 17 00:00:00 2001
From: Nathan Coleman <nathan.coleman@hashicorp.com>
Date: Mon, 8 Jul 2024 18:59:51 -0400
Subject: [PATCH] [NET-10290] Update ENVOY_VERSIONS (#21524)

* [NET-10290] Update ENVOY_VERSIONS

* Add changelog entry

* Link to CVE for more info in changelog entry

Co-authored-by: Deniz Onur Duzgun <59659739+dduzgun-security@users.noreply.github.com>

---------

Co-authored-by: Deniz Onur Duzgun <59659739+dduzgun-security@users.noreply.github.com>
---
 .changelog/21524.txt                     | 3 +++
 envoyextensions/xdscommon/ENVOY_VERSIONS | 6 +++---
 2 files changed, 6 insertions(+), 3 deletions(-)
 create mode 100644 .changelog/21524.txt

diff --git a/.changelog/21524.txt b/.changelog/21524.txt
new file mode 100644
index 0000000000..5f064e5c94
--- /dev/null
+++ b/.changelog/21524.txt
@@ -0,0 +1,3 @@
+```release-note:security
+Upgrade envoy module dependencies to version 1.27.7, 1.28.5 and 1.29.7 or higher to resolve [CVE-2024-39305](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39305)
+```
diff --git a/envoyextensions/xdscommon/ENVOY_VERSIONS b/envoyextensions/xdscommon/ENVOY_VERSIONS
index c604e79dc1..eef7f3100e 100644
--- a/envoyextensions/xdscommon/ENVOY_VERSIONS
+++ b/envoyextensions/xdscommon/ENVOY_VERSIONS
@@ -8,7 +8,7 @@
 #
 # See https://www.consul.io/docs/connect/proxies/envoy#supported-versions for more information on Consul's Envoy
 # version support.
-1.29.5
-1.28.4
-1.27.6
+1.29.7
+1.28.5
+1.27.7
 1.26.8
\ No newline at end of file