Code Review
/
sdnc
/
oam.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
review
|
tree
raw
(from parent 1:
3bb7991
)
Merge "Document OJSI-41 (CVE-2019-12132) vulnerability"
author
Dan Timoney
<dtimoney@att.com>
Fri, 7 Jun 2019 02:11:19 +0000
(
02:11
+0000)
committer
Gerrit Code Review
<gerrit@onap.org>
Fri, 7 Jun 2019 02:11:19 +0000
(
02:11
+0000)
Former-commit-id:
cb7bffceb87ca03c4055dbbe1c74e830670ddf79
docs/release-notes.rst
patch
|
blob
|
history
diff --git
a/docs/release-notes.rst
b/docs/release-notes.rst
index
f4ea951
..
40192ad
100644
(file)
--- a/
docs/release-notes.rst
+++ b/
docs/release-notes.rst
@@
-40,6
+40,9
@@
The full list of known issues in SDNC may be found in the ONAP Jira at <https://
*Fixed Security Issues*
+- CVE-2019-12132 `OJSI-41 <https://jira.onap.org/browse/OJSI-41>`_ SDNC service allows for arbitrary code execution in sla/dgUpload form
+ Fixed temporarily by disabling admportal
+
*Known Security Issues*
*Known Vulnerabilities in Used Modules*
@@
-240,5
+243,3
@@
in release 1.2.1:
**Other**
NA
-
-