If you discover a security vulnerability in this project, please report it responsibly.
Please send an email to:
Daniel Wagner wagi@kernel.org
Include as much information as possible to help us understand and reproduce the issue, such as:
- A description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Suggested fixes (if available)
We ask that security issues are not disclosed publicly until they have been investigated and a fix has been prepared.
After receiving a report, we will:
- Acknowledge receipt of the vulnerability report.
- Investigate and determine the impact.
- Develop and test a fix where applicable.
- Coordinate responsible disclosure.
Security fixes are generally applied to the currently maintained version of the project. Older versions may not receive security updates.
This policy applies only to vulnerabilities in the source code of this repository. Issues related to third-party dependencies should be reported to the respective upstream projects.
Thank you for helping improve the security of this project.