Document OJSI-122 vulnerability

author Krzysztof Opasiak <k.opasiak@samsung.com>

Wed, 5 Jun 2019 22:00:46 +0000 (00:00 +0200)

committer Shankaranarayanan Puzhavakath Narayanan <snarayanan@research.att.com>

Thu, 6 Jun 2019 14:36:10 +0000 (14:36 +0000)
author Krzysztof Opasiak <k.opasiak@samsung.com>
Wed, 5 Jun 2019 22:00:46 +0000 (00:00 +0200)
committer Shankaranarayanan Puzhavakath Narayanan <snarayanan@research.att.com>
Thu, 6 Jun 2019 14:36:10 +0000 (14:36 +0000)
diff --git a/docs/sections/release-notes.rst b/docs/sections/release-notes.rst

index 22c6b4b..4c4bd9c 100644 (file)
--- a/docs/sections/release-notes.rst
+++ b/docs/sections/release-notes.rst
@@ -46,6 +46,8 @@ The Dublin release for OOF delivered the following Epics.
  
  *Known Security Issues*
  
+    * [`OJSI-122 <https://jira.onap.org/browse/OJSI-122>`_] In default deployment OPTFRA (oof-osdf) exposes HTTP port 30248 outside of cluster.
+
  *Known Vulnerabilities in Used Modules*
  
  OPTFRA osdf code has been formally scanned during build time using NexusIQ and no Critical vulnerability was found.
author	Krzysztof Opasiak <k.opasiak@samsung.com>
	Wed, 5 Jun 2019 22:00:46 +0000 (00:00 +0200)
committer	Shankaranarayanan Puzhavakath Narayanan <snarayanan@research.att.com>
	Thu, 6 Jun 2019 14:36:10 +0000 (14:36 +0000)