Merge "Document OJSI-42 (CVE-201912123) vulnerability"

Former-commit-id: 67dec3df13ada39362c8b45043ee9b4f18846cc3
author: Dan Timoney <dtimoney@att.com> 2019-06-07 02:11:30 +0000
committer: Gerrit Code Review <gerrit@onap.org> 2019-06-07 02:11:30 +0000
commit: 3ec733ee86ec935b36b7753c2e93248b518dbb67 (patch)
tree: cbeda50ff0dd46691da476e3f69cfa20ba10c0a8
parent: 2e6c39d128f675739bc6359301a653e1a1985f58 (diff)
parent: 5ed5c26fe0d9a2803101498d7a500f206960632d (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index 40192add..bdafa1cb 100644
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -42,6 +42,8 @@ The full list of known issues in SDNC may be found in the ONAP Jira at <https://
 
 - CVE-2019-12132 `OJSI-41 <https://jira.onap.org/browse/OJSI-41>`_ SDNC service allows for arbitrary code execution in sla/dgUpload form
   Fixed temporarily by disabling admportal
+- CVE-2019-12123 `OJSI-42 <https://jira.onap.org/browse/OJSI-42>`_ SDNC service allows for arbitrary code execution in sla/printAsXml form
+  Fixed temporarily by disabling admportal
 
 *Known Security Issues*
author	Dan Timoney <dtimoney@att.com>	2019-06-07 02:11:30 +0000
committer	Gerrit Code Review <gerrit@onap.org>	2019-06-07 02:11:30 +0000
commit	3ec733ee86ec935b36b7753c2e93248b518dbb67 (patch)
tree	cbeda50ff0dd46691da476e3f69cfa20ba10c0a8
parent	2e6c39d128f675739bc6359301a653e1a1985f58 (diff)
parent	5ed5c26fe0d9a2803101498d7a500f206960632d (diff)