To report a security issue, you can either:

• file a Private Security Report (see Privately reporting a security vulnerability for instructions), or
• email [email protected].

When reporting a security issue, please provide a description of the issue, the steps you took to create the issue, affected versions, and, if known, mitigations for the issue.

The Ubuntu Security disclosure and embargo policy contains more information about what you can expect when you contact us and what we expect from you.