Document fixed OJSI-151 vulnerability

[multicloud/framework.git] / docs / Release Notes.rst

diff --git a/docs/Release Notes.rst b/docs/Release Notes.rst
index b32e1fa..224c930 100644 (file)
--- a/docs/Release Notes.rst
+++ b/docs/Release Notes.rst
@@ -387,6 +387,24 @@ None
 
 **Security Notes**
 
+*Fixed Security Issues*
+
+- `OJSI-130 <https://jira.onap.org/browse/OJSI-130>`_
+  In default deployment MULTICLOUD (multicloud-azure) exposes HTTP port 30261 outside of cluster.
+
+- `OJSI-148 <https://jira.onap.org/browse/OJSI-148>`_
+  In default deployment MULTICLOUD (multicloud) exposes HTTP port 30291 outside of cluster.
+
+- `OJSI-150 <https://jira.onap.org/browse/OJSI-150>`_
+  In default deployment MULTICLOUD (multicloud-ocata) exposes HTTP port 30293 outside of cluster.
+
+- `OJSI-151 <https://jira.onap.org/browse/OJSI-151>`_
+  In default deployment MULTICLOUD (multicloud-windriver) exposes HTTP port 30294 outside of cluster.
+
+*Known Security Issues*
+
+*Known Vulnerabilities in Used Modules*
+
 MULTICLOUD code has been formally scanned during build time using NexusIQ and
 all Critical vulnerabilities have been addressed, items that remain open have
 been assessed for risk and determined to be false positive.