Merge "Updated El-Alto Release Notes"

author Manoop Talasila <talasila@research.att.com>

Wed, 16 Oct 2019 12:21:56 +0000 (12:21 +0000)

committer Gerrit Code Review <gerrit@onap.org>

Wed, 16 Oct 2019 12:21:56 +0000 (12:21 +0000)
author Manoop Talasila <talasila@research.att.com>
Wed, 16 Oct 2019 12:21:56 +0000 (12:21 +0000)
committer Gerrit Code Review <gerrit@onap.org>
Wed, 16 Oct 2019 12:21:56 +0000 (12:21 +0000)
diff --combined docs/release-notes.rst

index 79b2b18,6a83867..59e1734
--- 1/docs/release-notes.rst
--- 2/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@@ -12,7 -12,7 +12,7 @@@ Version: 2.6.
   .. toctree::
       :maxdepth: 1
   
- Maintanance release with bug fixes and security enhancements.
+ Maintenance release with bug fixes and security enhancements.
   
   **No New Features**
   
@@@ -31,15 -31,7 +31,15 @@@
              4. Then demo user can access AAI UI app from Portal
   
   **Security Notes**
- -        * Security Enhancements - Fixed OJSI issues.
+ +
+ +*Fixed Security Issues*
+ +
+ +        * CVE-2019-12122 - ONAP Portal allows to retrieve password of currently active user [`OJSI-65 <https://jira.onap.org/browse/OJSI-65>`_]
+ +        * CVE-2019-12121 - ONAP Portal is vulnerable for Padding Oracle attack [`OJSI-92 <https://jira.onap.org/browse/OJSI-92>`_]
+ +
+ +*Known Security Issues*
+ +
+ +*Known Vulnerabilities in Used Modules*
           * Addressed security issues reported by NexusIQ Critical and Severe issues
   
   Quick Links:
author	Manoop Talasila <talasila@research.att.com>
	Wed, 16 Oct 2019 12:21:56 +0000 (12:21 +0000)
committer	Gerrit Code Review <gerrit@onap.org>
	Wed, 16 Oct 2019 12:21:56 +0000 (12:21 +0000)