Security fixes are provided for the following branches:
| Branch | Status |
|---|---|
| wrynose | Supported |
Please do not open a public GitHub issue for security vulnerabilities.
Report privately via Email to: info@embetrix.com
Please include:
- A description of the issue and its impact
- Steps to reproduce or a proof-of-concept
- Affected version, branch, or commit
- Your name/handle for credit (optional)
Out of scope (report upstream instead):
- Issues in the Raspberry Pi bootloader, GPU firmware, or EEPROM
- Issues in poky, meta-raspberrypi, meta-openembedded, meta-security, meta-selinux, or the Linux kernel
- Physical attacks (bus probing, glitching, side-channel)
- Misuse caused by ignoring documented warnings (e.g., losing signing keys after burning OTP fuses)