Merge "Document OJSI-179 vulnerability"

author Dan Timoney <dtimoney@att.com>

Fri, 7 Jun 2019 02:12:49 +0000 (02:12 +0000)

committer Gerrit Code Review <gerrit@onap.org>

Fri, 7 Jun 2019 02:12:49 +0000 (02:12 +0000)
author Dan Timoney <dtimoney@att.com>
Fri, 7 Jun 2019 02:12:49 +0000 (02:12 +0000)
committer Gerrit Code Review <gerrit@onap.org>
Fri, 7 Jun 2019 02:12:49 +0000 (02:12 +0000)
diff --git a/docs/release-notes.rst b/docs/release-notes.rst

index d7d6b17..216b192 100644 (file)
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -58,6 +58,7 @@ The full list of known issues in SDNC may be found in the ONAP Jira at <https://
  - `OJSI-34 <https://jira.onap.org/browse/OJSI-34>`_ Multiple SQL Injection issues in SDNC
  - `OJSI-99 <https://jira.onap.org/browse/OJSI-99>`_ In default deployment SDNC (sdnc) exposes HTTP port 30202 outside of cluster.
  - `OJSI-100 <https://jira.onap.org/browse/OJSI-100>`_ In default deployment SDNC (sdnc-dgbuilder) exposes HTTP port 30203 outside of cluster.
+- `OJSI-179 <https://jira.onap.org/browse/OJSI-179>`_ dev-sdnc-sdnc exposes JDWP on port 1830 which allows for arbitrary code execution
  
  *Known Vulnerabilities in Used Modules*
author	Dan Timoney <dtimoney@att.com>
	Fri, 7 Jun 2019 02:12:49 +0000 (02:12 +0000)
committer	Gerrit Code Review <gerrit@onap.org>
	Fri, 7 Jun 2019 02:12:49 +0000 (02:12 +0000)