You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@apisix.apache.org by sp...@apache.org on 2020/12/08 09:49:39 UTC

[apisix] branch master updated: docs: update CVE information in the CHANGELOG of `2.0` (#2987)

This is an automated email from the ASF dual-hosted git repository.

spacewander pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/apisix.git


The following commit(s) were added to refs/heads/master by this push:
     new 32c7df4  docs: update CVE information in the CHANGELOG of `2.0` (#2987)
32c7df4 is described below

commit 32c7df44cacc28d33abf5c1179b0fc8afa934036
Author: YuanSheng Wang <me...@gmail.com>
AuthorDate: Tue Dec 8 17:49:28 2020 +0800

    docs: update CVE information in the CHANGELOG of `2.0` (#2987)
---
 CHANGELOG.md    | 3 +++
 CHANGELOG_CN.md | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index fb4b763..b0dcb08 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -90,6 +90,9 @@ This is release candidate.
 
 For more changes, please refer to [Milestone](https://github.com/apache/apisix/milestone/7)
 
+## CVE
+- Fixed Admin API default access token vulnerability
+
 ## 1.5.0
 
 ### Core
diff --git a/CHANGELOG_CN.md b/CHANGELOG_CN.md
index 055f869..97bdcad 100644
--- a/CHANGELOG_CN.md
+++ b/CHANGELOG_CN.md
@@ -91,6 +91,9 @@
 
 更多的变动可以参考[里程碑](https://github.com/apache/apisix/milestone/7)
 
+## CVE
+- 修复 Admin API 默认访问令牌漏洞
+
 ## 1.5.0
 
 ### Core