Document fixed OJSI tickets

Issue-ID: OJSI-65 Issue-ID: OJSI-92 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: I5c16b0601ec6a27edd98cc07440f29ac7bed80bd
author: Krzysztof Opasiak <k.opasiak@samsung.com> 2019-10-05 23:52:06 +0200
committer: Krzysztof Opasiak <k.opasiak@samsung.com> 2019-10-05 23:52:06 +0200
commit: e16f6f96b3207fdc3752f2e1f2234ee8b77f3bed (patch)
tree: d5ad2948b4564a2b4cb0b2aa2d223beddb9269da
parent: 7995eca6ba48a3129fd0c6f1b20b925e0b306999 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index 8d587560..9f262149 100644
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -28,6 +28,9 @@ Maintanance release with bug fixes and security enhancements.
 
 *Fixed Security Issues*
 
+        * CVE-2019-12122 - ONAP Portal allows to retrieve password of currently active user [`OJSI-65 <https://jira.onap.org/browse/OJSI-65>`_]
+        * CVE-2019-12121 - ONAP Portal is vulnerable for Padding Oracle attack [`OJSI-92 <https://jira.onap.org/browse/OJSI-92>`_]
+
 *Known Security Issues*
 
 *Known Vulnerabilities in Used Modules*
author	Krzysztof Opasiak <k.opasiak@samsung.com>	2019-10-05 23:52:06 +0200
committer	Krzysztof Opasiak <k.opasiak@samsung.com>	2019-10-05 23:52:06 +0200
commit	e16f6f96b3207fdc3752f2e1f2234ee8b77f3bed (patch)
tree	d5ad2948b4564a2b4cb0b2aa2d223beddb9269da
parent	7995eca6ba48a3129fd0c6f1b20b925e0b306999 (diff)