| Manuel Pégourié-Gonnard | a21abf2 | 2021-02-25 11:41:38 +0100 | [diff] [blame] | 1 | ## Reporting Vulneratibilities |
| 2 | |
| 3 | If you think you have found an Mbed TLS security vulnerability, then please |
| 4 | send an email to the security team at |
| 5 | <mbed-tls-security@lists.trustedfirmware.org>. |
| 6 | |
| 7 | ## Security Incident Handling Process |
| 8 | |
| 9 | Our security process is detailled in our [security |
| 10 | center](https://developer.trustedfirmware.org/w/mbed-tls/security-center/). |
| 11 | |
| 12 | Its primary goal is to ensure fixes are ready to be deployed when the issue |
| 13 | goes public. |
| 14 | |
| 15 | ## Maintained branches |
| 16 | |
| 17 | Only the maintained branches, as listed in BRANCHES.md, get security fixes. |
| 18 | Users are urged to always use the latest version of a maintained branch. |