Standard Security Support covers bug fixes and all accepted security vulnerabilities of Low, Moderate, High, or Critical severity.
Extended Security Support covers all accepted security vulnerabilities of Moderate, High, or Critical severity.
These are the currently supported versions of System Extensions.
| Version | Standard Security Support | Extended Security Support |
|---|---|---|
| 5.3.x | Until System Extensions 5.5 | Until System Extensions 5.5 |
| 5.2.x | Until System Extensions 5.4 | Until System Extensions 5.5 |
| 5.1.x | ❌ | Until System Extensions 5.4 |
| < 5.1.x | ❌ | ❌ |
If you wish to report a potential security vulnerability please go to the security tab on this GitHub project and create a new Security Vulnerability report.
Please ensure information about the potential vulnerability is contained in the report!
I will attempt to provide acknowledgement of receipt of the reported security vulnerability shortly after being notified of it.
It may take a few days to investigate the issue and subsequently decide how to handle the potential vulnerability if is accepted as one.
Whilst a vulnerability is being investigated, please do not publish any details about the vulnerability. By Public Disclosure I mean:
- Disclosure in a publicly accessible or publicly visible form
- Discussion with people outside of your immediate colleagues or team
- Leaking or anonymously communicating the details of the vulnerability to another person or other people