8b0ecbccf4
Signed-off-by: Shaun Case <warmsocks@gmail.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
20 lines
640 B
Markdown
20 lines
640 B
Markdown
## Reporting Vulneratibilities
|
|
|
|
If you think you have found an Mbed TLS security vulnerability, then please
|
|
send an email to the security team at
|
|
<mbed-tls-security@lists.trustedfirmware.org>.
|
|
|
|
## Security Incident Handling Process
|
|
|
|
Our security process is detailed in our
|
|
[security
|
|
center](https://developer.trustedfirmware.org/w/mbed-tls/security-center/).
|
|
|
|
Its primary goal is to ensure fixes are ready to be deployed when the issue
|
|
goes public.
|
|
|
|
## Maintained branches
|
|
|
|
Only the maintained branches, as listed in [`BRANCHES.md`](BRANCHES.md),
|
|
get security fixes.
|
|
Users are urged to always use the latest version of a maintained branch.
|