X-Git-Url: https://gerrit.onap.org/r/gitweb?a=blobdiff_plain;f=docs%2Frelease-notes.rst;h=59e173444f0aa7d37fee16e33f36de9b6b79e184;hb=b444e627ff96fa720ba3cc487bef2761b2888e1b;hp=7236d84868440fa8ea196d40cbe1f54f3f0eafce;hpb=8d4ac88d87e4776999f13ef151658f1bb48c2bbf;p=portal.git

diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index 7236d848..59e17344 100644
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -12,7 +12,7 @@ Version: 2.6.0
 .. toctree::
     :maxdepth: 1
 
-Maintanance release with bug fixes and security enhancements.
+Maintenance release with bug fixes and security enhancements.
 
 **No New Features**
 
@@ -34,6 +34,9 @@ Maintanance release with bug fixes and security enhancements.
 
 *Fixed Security Issues*
 
+        * CVE-2019-12122 - ONAP Portal allows to retrieve password of currently active user [`OJSI-65 <https://jira.onap.org/browse/OJSI-65>`_]
+        * CVE-2019-12121 - ONAP Portal is vulnerable for Padding Oracle attack [`OJSI-92 <https://jira.onap.org/browse/OJSI-92>`_]
+
 *Known Security Issues*
 
 *Known Vulnerabilities in Used Modules*