aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorKrzysztof Opasiak <k.opasiak@samsung.com>2019-06-05 02:08:05 +0200
committerKrzysztof Opasiak <k.opasiak@samsung.com>2019-06-05 02:08:05 +0200
commit7fca6eedf4d67baa85fb2f112f421559c94eb73c (patch)
treedd2bb7c58caac4c8e65c5cfbc789cf8ab3c5a2ab
parent7396f764d69b38b48984db49aa4b25ee7a22d685 (diff)
Document OJSI-77 (CVE-2019-12116) vulnerability
Issue-ID: OJSI-77 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: I4a1f92491cc0792659493cecc73575aba4100116
-rw-r--r--docs/release-notes.rst1
1 files changed, 1 insertions, 0 deletions
diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index 1cdd7f4a43..84947c6f83 100644
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -103,6 +103,7 @@ Security Notes
- [`OJSI-31 <https://jira.onap.org/browse/OJSI-31>`__\ ] - Unsecured Swagger UI Interface in sdc-wfd-be
- CVE-2019-12115 [`OJSI-76 <https://jira.onap.org/browse/OJSI-76>`__\ ] - demo-sdc-sdc-be exposes JDWP on port 4000 which allows for arbitrary code execution
+- CVE-2019-12116 [`OJSI-77 <https://jira.onap.org/browse/OJSI-77>`__\ ] - demo-sdc-sdc-fe exposes JDWP on port 6000 which allows for arbitrary code execution
*Known Vulnerabilities in Used Modules*