Gitiles
Code Review Sign In
gerrit.nordix.org / onap / doc / 0bfab1135042371269bb4aa23599a98a9e8050f6
commit0bfab1135042371269bb4aa23599a98a9e8050f6[log] [tgz]
authorTschaen, Brendan <ctschaen@att.com>Fri Oct 11 11:05:48 2019 -0400
committerGerrit Code Review <gerrit@onap.org>Fri Oct 11 15:05:48 2019 +0000
tree84012abe73ed721e933e7916ccabd9571d1a6861
parent0aa3b7ac53025382ea9a491fd9533acbc3d20d5e [diff]
Update git submodules

* Update docs/submodules/music.git from branch 'elalto'
  to da5ad5ecc57dd98654c96eb30965e09bbd22dc48
  - El Alto Release Notes
    
    Change-Id: I6703f52383d9901cb1e08b5ce92fb6e66b454cfa
    Issue-ID: MUSIC-496
    Signed-off-by: Tschaen, Brendan <ctschaen@att.com>
    
  - Jackson Faster-xml vulnerability.
    
    CVE-2019-14439 Information Disclosure Vulnerability
    
    FasterXML Jackson-databind is prone to an information-disclosure
    vulnerability that occurs due to a polymorphic typing issue.
    Specifically, this issue occurs when an externally exposed JSON endpoint
    has default typing enabled and has logback jar in the classpath.
    
    An attacker can exploit this issue to obtain sensitive information that
    may aid in further attacks.
    
    Issue-ID: MUSIC-504
    Signed-off-by: Thomas Nelson (arthurdent3) <nelson24@att.com>
    Signed-off-by: Thomas Nelson (arthurdent3) <nelson24@att.com>
    Change-Id: I2c31986ff2d792d482f84406e96c47dbf652f32f
1 file changed
tree: 84012abe73ed721e933e7916ccabd9571d1a6861
  1. docs/
  2. etc/
  3. shell/
  4. .gitignore
  5. .gitmodules
  6. .gitreview
  7. INFO.yaml
  8. LICENSE
  9. readthedocs.yml
  10. tox.ini