We take security seriously. If you discover a vulnerability in DzLinux, please follow the guidelines below to report it responsibly.
Only the latest active major and minor releases are actively supported with security patches:
| Version | Supported |
|---|---|
| 1.4.x | Yes |
| < 1.3.x | No |
Please upgrade to the latest version immediately to ensure you have the latest security fixes.
Please do not report security vulnerabilities publicly via GitHub Issues.
Instead, please report security issues by emailing the main developer directly:
- Email: dzlinux@route2place.com
Please include:
- A clear description of the vulnerability.
- Step-by-step instructions to reproduce the issue (including any code snippets or log files).
- The potential impact of the vulnerability.
We will acknowledge receipt of your report within 48 hours and work with you to resolve the issue as quickly as possible.
- We will aim to investigate and patch reported vulnerabilities within 30 days of receipt.
- A public security advisory will be published along with a new release containing the fix.
- Reporters will be credited in the release notes unless they choose to remain anonymous.