You are viewing a plain text version of this content. The canonical link for it is here.
Posted to notifications@apisix.apache.org by sp...@apache.org on 2020/12/08 09:49:39 UTC
[apisix] branch master updated: docs: update CVE information in the
CHANGELOG of `2.0` (#2987)
This is an automated email from the ASF dual-hosted git repository.
spacewander pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/apisix.git
The following commit(s) were added to refs/heads/master by this push:
new 32c7df4 docs: update CVE information in the CHANGELOG of `2.0` (#2987)
32c7df4 is described below
commit 32c7df44cacc28d33abf5c1179b0fc8afa934036
Author: YuanSheng Wang <me...@gmail.com>
AuthorDate: Tue Dec 8 17:49:28 2020 +0800
docs: update CVE information in the CHANGELOG of `2.0` (#2987)
---
CHANGELOG.md | 3 +++
CHANGELOG_CN.md | 3 +++
2 files changed, 6 insertions(+)
diff --git a/CHANGELOG.md b/CHANGELOG.md
index fb4b763..b0dcb08 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -90,6 +90,9 @@ This is release candidate.
For more changes, please refer to [Milestone](https://github.com/apache/apisix/milestone/7)
+## CVE
+- Fixed Admin API default access token vulnerability
+
## 1.5.0
### Core
diff --git a/CHANGELOG_CN.md b/CHANGELOG_CN.md
index 055f869..97bdcad 100644
--- a/CHANGELOG_CN.md
+++ b/CHANGELOG_CN.md
@@ -91,6 +91,9 @@
更多的变动可以参考[里程碑](https://github.com/apache/apisix/milestone/7)
+## CVE
+- 修复 Admin API 默认访问令牌漏洞
+
## 1.5.0
### Core