summaryrefslogtreecommitdiff
path: root/usr.sbin/unbound/SECURITY.md
blob: 5770ccd79918b91292cfb1f1bda48a4d1ecbcf82 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
# Security Policy

## Supported Versions

NLnet Labs adheres to the straightforward, semantic versioning scheme that is
commonly used in the software industry.

Support is provided in respect of the latest release, i.e. releases with the
highest minor and patch version level. We do not backport security fixes to
older (minor) versions. In the event a new major version is released (e.g.  from
3.2.18 to 4.0.0), support will also be provided on the latest minor  version of
the previous major version (3.2.18) for a period of one year from the release of
the new major version (4.0.0).

In the event that, during this period, a new patch or minor version of the
previous major version is released, then support on these versions will only be
provided for the remainder of the one-year-period.

You can find detailed information on our software support policy here:

https://www.nlnetlabs.nl/support/software-support-policy/

## Reporting a Vulnerability

We take security very seriously. If you have discovered a security vulnerability
in one of our projects and you would like to report it to us, you can send an
encrypted message to our Security Entry Point.

Details are described here:

https://www.nlnetlabs.nl/security-report/