If you believe you have found a security vulnerability, please submit a report to [email protected] preferably with a proof of concept. Please refer to Reporting Vulnerabilities for additional information including our public encryption key for secure email. We ask that you do not contact project contributors directly or through other channels about a report.

For additional information including past advisories, please refer to Security Alerts.

Non-vulnerability related security issues may be discussed on GitHub Issues or the Security channel in the Oracle Database community forums.