0b86ac1957
Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>
21 lines
638 B
Markdown
21 lines
638 B
Markdown
## Reporting Vulnerabilities
|
|
|
|
If you think you have found an Mbed TLS security vulnerability, then please
|
|
send an email to the security team at
|
|
<mbed-tls-security@lists.trustedfirmware.org>.
|
|
|
|
## Security Incident Handling Process
|
|
|
|
Our security process is detailed in our
|
|
[security
|
|
center](https://developer.trustedfirmware.org/w/mbed-tls/security-center/).
|
|
|
|
Its primary goal is to ensure fixes are ready to be deployed when the issue
|
|
goes public.
|
|
|
|
## Maintained branches
|
|
|
|
Only the maintained branches, as listed in [`BRANCHES.md`](BRANCHES.md),
|
|
get security fixes.
|
|
Users are urged to always use the latest version of a maintained branch.
|