Document OJSI-196 vulnerability

[ccsdk/distribution.git] / docs / release-notes.rst

diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index 9bdb24e..03c7c82 100644 (file)
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -3,6 +3,55 @@
 Release Notes
 #############
 
+Version 0.4.3
+*************
+:Release Date: 2019-06-13
+
+**New Features**
+
+The full list of Dublin epics and user stories for CCSDK maybe be found at <https://jira.onap.org/issues/?filter=11802>.
+
+The following list summarizes some of the most significant epics:
+
++-------------+------------------------------------------------+
+| Jira #      | Abstract                                       |
++=============+================================================+
+| [CCSDK-575] | Improve E2E Process Automation                 |
++-------------+------------------------------------------------+
+| [CCSDK-840] | S3P - Footprint Optimization                   |
++-------------+------------------------------------------------+
+| [CCSDK-859] | Update to OpenDaylight Fluorine                |
++-------------+------------------------------------------------+
+| [CCSDK-929] | 5G Use Case                                    |
++-------------+------------------------------------------------+
+| [CCSDK-930] | CCVPN Use Case Extension                       |
++-------------+------------------------------------------------+
+
+
+**Bug Fixes**
+The full list of bug fixes in the CCSDK Dublin release may be found at <https://jira.onap.org/issues/?filter=11804>
+
+**Known Issues**
+The full list of known issues in CCSDK may be found in the ONAP Jira at <https://jira.onap.org/issues/?filter=11341>
+
+**Security Notes**
+
+*Fixed Security Issues*
+
+*Known Security Issues*
+
+        * In default deployment CCSDK (netbox-nginx) exposes HTTP port 30420 outside of cluster. [`OJSI-160 <https://jira.onap.org/browse/OJSI-160>`_]
+        * In default deployment CCSDK (cds-ui) exposes HTTP port 30497 outside of cluster. [`OJSI-196 <https://jira.onap.org/browse/OJSI-196>`_]
+
+*Known Vulnerabilities in Used Modules*
+
+Quick Links:
+       - `CCSDK project page <https://wiki.onap.org/display/DW/Common+Controller+SDK+Project>`_
+
+       - `Passing Badge information for CCSDK <https://bestpractices.coreinfrastructure.org/en/projects/1630>`_
+
+       - `Project Vulnerability Review Table for CCSDK <https://wiki.onap.org/pages/viewpage.action?pageId=51282469>`_
+
 Version: 0.3.3
 **************
 
@@ -34,9 +83,9 @@ The full list of known issues in CCSDK may be found in the ONAP Jira at <https:/
 
 Quick Links:
    - `CCSDK project page <https://wiki.onap.org/display/DW/Common+Controller+SDK+Project>`_
-   
+
    - `Passing Badge information for CCSDK <https://bestpractices.coreinfrastructure.org/en/projects/1630>`_
-   
+
    - `Project Vulnerability Review Table for CCSDK <https://wiki.onap.org/pages/viewpage.action?pageId=45300857>`_
 
 Version: 0.3.2
@@ -70,9 +119,9 @@ The full list of known issues in CCSDK may be found in the ONAP Jira at <https:/
 
 Quick Links:
        - `CCSDK project page <https://wiki.onap.org/display/DW/Common+Controller+SDK+Project>`_
-       
+
        - `Passing Badge information for CCSDK <https://bestpractices.coreinfrastructure.org/en/projects/1630>`_
-       
+
        - `Project Vulnerability Review Table for CCSDK <https://wiki.onap.org/pages/viewpage.action?pageId=45300857>`_
 
 Version: 0.2.4
@@ -126,9 +175,9 @@ CCSDK code has been formally scanned during build time using NexusIQ and all Cri
 
 Quick Links:
        - `CCSDK project page <https://wiki.onap.org/display/DW/Common+Controller+SDK+Project>`_
-       
+
        - `Passing Badge information for CCSDK <https://bestpractices.coreinfrastructure.org/en/projects/1630>`_
-       
+
        - `Project Vulnerability Review Table for CCSDK <https://wiki.onap.org/pages/viewpage.action?pageId=28379011>`_
 
 **Upgrade Notes**
@@ -182,4 +231,3 @@ The Common Controller SDK provides the following functionality :
 **Deprecation Notes**
 
 **Other**
-