commit 33d10dd35de6a80bf833a0c5470ee60dcdb19953
author Krzysztof Opasiak <k.opasiak@samsung.com> Sat Oct 05 23:52:06 2019 +0200
committer Manoop Talasila <talasila@research.att.com> Wed Oct 09 15:27:54 2019 +0000
tree d0028039d612dd3cbfa80501a0fdea40305a8420
parent 8d4ac88d87e4776999f13ef151658f1bb48c2bbf

Document fixed OJSI tickets

Issue-ID: OJSI-65
Issue-ID: OJSI-92
Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
Change-Id: I5c16b0601ec6a27edd98cc07440f29ac7bed80bd
(cherry picked from commit e16f6f96b3207fdc3752f2e1f2234ee8b77f3bed)

docs/release-notes.rst

diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index 7236d84..79b2b18 100644
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -34,6 +34,9 @@
 
 *Fixed Security Issues*
 
+        * CVE-2019-12122 - ONAP Portal allows to retrieve password of currently active user [`OJSI-65 <https://jira.onap.org/browse/OJSI-65>`_]
+        * CVE-2019-12121 - ONAP Portal is vulnerable for Padding Oracle attack [`OJSI-92 <https://jira.onap.org/browse/OJSI-92>`_]
+
 *Known Security Issues*
 
 *Known Vulnerabilities in Used Modules*