Document OJSI-190 vulnerability

Issue-ID: OJSI-190 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: I1c586793b744a5807e7b1a7a1d416dfd43409ab0
author: Krzysztof Opasiak <k.opasiak@samsung.com> 2019-05-30 15:29:12 +0200
committer: Krzysztof Opasiak <k.opasiak@samsung.com> 2019-05-30 15:36:36 +0200
commit: 8514f4a449cf3b06b4f515b1c6754c82abbfc5b6 (patch)
tree: 8ecaf6fc7f49186b9eab6f9c91cf40ed2fbe6d06 /docs/release-notes.rst
parent: e93abc707191be45c18175c73904796df31b2654 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index 0fdbe807..9502569a 100644
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -43,6 +43,7 @@ We worked on SDK upgrade to integrate with AAF. We partially implemented multi-l
 	* In defult deployment PORTAL (portal-app) exposes HTTP port 30215 outside of cluster. [`OJSI-105 <https://jira.onap.org/browse/OJSI-105>`_]
 	* In defult deployment PORTAL (portal-sdk) exposes HTTP port 30212 outside of cluster. [`OJSI-106 <https://jira.onap.org/browse/OJSI-106>`_]
 	* CVE-2019-12318 - Number of SQL Injections in Portal [`OJSI-174 <https://jira.onap.org/browse/OJSI-174>`_]
+	* Portal stores users passwords encrypted instead of hashed [`OJSI-190 <https://jira.onap.org/browse/OJSI-190>`_]
 
 *Known Vulnerabilities in Used Modules*
author	Krzysztof Opasiak <k.opasiak@samsung.com>	2019-05-30 15:29:12 +0200
committer	Krzysztof Opasiak <k.opasiak@samsung.com>	2019-05-30 15:36:36 +0200
commit	8514f4a449cf3b06b4f515b1c6754c82abbfc5b6 (patch)
tree	8ecaf6fc7f49186b9eab6f9c91cf40ed2fbe6d06 /docs/release-notes.rst
parent	e93abc707191be45c18175c73904796df31b2654 (diff)