diff options
| -rw-r--r-- | docs/release-notes.rst | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/docs/release-notes.rst b/docs/release-notes.rst index 7e2736d3..79b2b186 100644 --- a/docs/release-notes.rst +++ b/docs/release-notes.rst @@ -31,7 +31,15 @@ Maintanance release with bug fixes and security enhancements. 4. Then demo user can access AAI UI app from Portal **Security Notes** - * Security Enhancements - Fixed OJSI issues. + +*Fixed Security Issues* + + * CVE-2019-12122 - ONAP Portal allows to retrieve password of currently active user [`OJSI-65 <https://jira.onap.org/browse/OJSI-65>`_] + * CVE-2019-12121 - ONAP Portal is vulnerable for Padding Oracle attack [`OJSI-92 <https://jira.onap.org/browse/OJSI-92>`_] + +*Known Security Issues* + +*Known Vulnerabilities in Used Modules* * Addressed security issues reported by NexusIQ Critical and Severe issues Quick Links: |