From 9b04fa3e13cb533ba77fe8705aed13e0ebeaa440 Mon Sep 17 00:00:00 2001
From: "octo-sts[bot]" <157150467+octo-sts[bot]@users.noreply.github.com>
Date: Fri, 20 Dec 2024 08:45:39 +0000
Subject: [PATCH] Adding Advisory GHSA-w32m-9786-jp63 for
 cloud-provider-azure-1.31 (#10764)

Co-authored-by: octo-sts[bot] <157150467+octo-sts@users.noreply.github.com>
---
 cloud-provider-azure-1.31.advisories.yaml | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/cloud-provider-azure-1.31.advisories.yaml b/cloud-provider-azure-1.31.advisories.yaml
index 4139fd64c3..d98f0ff765 100644
--- a/cloud-provider-azure-1.31.advisories.yaml
+++ b/cloud-provider-azure-1.31.advisories.yaml
@@ -4,6 +4,24 @@ package:
   name: cloud-provider-azure-1.31
 
 advisories:
+  - id: CGA-4m68-rfxv-8p3m
+    aliases:
+      - CVE-2024-45338
+      - GHSA-w32m-9786-jp63
+    events:
+      - timestamp: 2024-12-20T08:26:10Z
+        type: detection
+        data:
+          type: scan/v1
+          data:
+            subpackageName: cloud-provider-azure-1.31
+            componentID: c922a11b916fe95c
+            componentName: golang.org/x/net
+            componentVersion: v0.28.0
+            componentType: go-module
+            componentLocation: /usr/bin/cloud-node-manager
+            scanner: grype
+
   - id: CGA-9297-6mmc-xw82
     aliases:
       - CVE-2024-45337