diff --git a/envoy/COMMIT b/envoy/COMMIT
index 4f940a2359..45c9778bfd 100644
--- a/envoy/COMMIT
+++ b/envoy/COMMIT
@@ -1 +1 @@
-3757d99a26c5ad11c096c4ddbbb0f484d6cf3bb9
+b5bbfba79379eaf4824c3a96c4d9d19bd498a31a
diff --git a/envoy/extensions/filters/http/oauth2/v3/oauth.pb.go b/envoy/extensions/filters/http/oauth2/v3/oauth.pb.go
index 4f1119211c..30fd68c3c8 100755
--- a/envoy/extensions/filters/http/oauth2/v3/oauth.pb.go
+++ b/envoy/extensions/filters/http/oauth2/v3/oauth.pb.go
@@ -234,7 +234,7 @@ type OAuth2Config struct {
 	//
 	// If this value is not set, it will default to “604800s“. In this case, the cookie with the refresh token will be expired
 	// in a week.
-	// This setting is only considered if “use_refresh_token“ is set to true, otherwise the authorization server expiration or “defaul_expires_in“ is used.
+	// This setting is only considered if “use_refresh_token“ is set to true, otherwise the authorization server expiration or “default_expires_in“ is used.
 	DefaultRefreshTokenExpiresIn *durationpb.Duration `protobuf:"bytes,15,opt,name=default_refresh_token_expires_in,json=defaultRefreshTokenExpiresIn,proto3" json:"default_refresh_token_expires_in,omitempty"`
 	// If set to true, Envoy will not set a cookie for ID Token even if one is received from the Identity Provider. This may be useful in cases where the ID
 	// Token is too large for HTTP cookies (longer than 4096 characters). Enabling this option will only disable setting the cookie response header, the filter