xref: /freebsd/contrib/unbound/SECURITY.md (revision a4e5e0106ac7145f56eb39a691e302cabb4635be)
1# Security Policy
2
3## Supported Versions
4
5NLnet Labs adheres to the straightforward, semantic versioning scheme that is
6commonly used in the software industry.
7
8Support is provided in respect of the latest release, i.e. releases with the
9highest minor and patch version level. We do not backport security fixes to
10older (minor) versions. In the event a new major version is released (e.g.  from
113.2.18 to 4.0.0), support will also be provided on the latest minor  version of
12the previous major version (3.2.18) for a period of one year from the release of
13the new major version (4.0.0).
14
15In the event that, during this period, a new patch or minor version of the
16previous major version is released, then support on these versions will only be
17provided for the remainder of the one-year-period.
18
19You can find detailed information on our software support policy here:
20
21https://www.nlnetlabs.nl/support/software-support-policy/
22
23## Reporting a Vulnerability
24
25We take security very seriously. If you have discovered a security vulnerability
26in one of our projects and you would like to report it to us, you can send an
27encrypted message to our Security Entry Point.
28
29Details are described here:
30
31https://www.nlnetlabs.nl/security-report/
32