aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorDan Timoney <dtimoney@att.com>2019-06-07 02:11:30 +0000
committerGerrit Code Review <gerrit@onap.org>2019-06-07 02:11:30 +0000
commit3ec733ee86ec935b36b7753c2e93248b518dbb67 (patch)
treecbeda50ff0dd46691da476e3f69cfa20ba10c0a8
parent2e6c39d128f675739bc6359301a653e1a1985f58 (diff)
parent5ed5c26fe0d9a2803101498d7a500f206960632d (diff)
Merge "Document OJSI-42 (CVE-201912123) vulnerability"
Former-commit-id: 67dec3df13ada39362c8b45043ee9b4f18846cc3
-rw-r--r--docs/release-notes.rst2
1 files changed, 2 insertions, 0 deletions
diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index 40192add..bdafa1cb 100644
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -42,6 +42,8 @@ The full list of known issues in SDNC may be found in the ONAP Jira at <https://
- CVE-2019-12132 `OJSI-41 <https://jira.onap.org/browse/OJSI-41>`_ SDNC service allows for arbitrary code execution in sla/dgUpload form
Fixed temporarily by disabling admportal
+- CVE-2019-12123 `OJSI-42 <https://jira.onap.org/browse/OJSI-42>`_ SDNC service allows for arbitrary code execution in sla/printAsXml form
+ Fixed temporarily by disabling admportal
*Known Security Issues*