From 4fd0e98f62594198ba240265634a3302c3d257ef Mon Sep 17 00:00:00 2001
From: Krzysztof Opasiak <k.opasiak@samsung.com>
Date: Tue, 4 Jun 2019 02:05:05 +0200
Subject: Document OJSI-88 (CVE-2019-12126) vulnerability

Issue-ID: OJSI-88
Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
Change-Id: Id2086207baf3ff3426fca92295bdf30b5efa4b73
---
 docs/release-notes.rst | 1 +
 1 file changed, 1 insertion(+)

(limited to 'docs/release-notes.rst')

diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index af38b75..6a5cb48 100644
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -42,6 +42,7 @@ N/A
 *Known Security Issues*
 
 	* In default deployment VNFSDK (refrepo) exposes HTTP port 30297 outside of cluster. [`OJSI-154 <https://jira.onap.org/browse/OJSI-154>`_]
+	* CVE-2019-12126 - demo-vnfsdk-vnfsdk exposes JDWP port 8000 on localhost which allows to gain root privileges inside the container [`OJSI-88 <https://jira.onap.org/browse/OJSI-88>`_]
 
 *Known Vulnerabilities in Used Modules*
 
-- 
cgit 1.2.3-korg