2024-10-17 11:20:41 +00:00
|
|
|
# Security Policy
|
|
|
|
|
|
|
|
|
|
melonDS DS (including the underlying emulator)
|
|
|
|
|
is intended for recreational purposes
|
|
|
|
|
and should not be used in security-critical environments.
|
|
|
|
|
|
|
|
|
|
Only the latest release is supported;
|
|
|
|
|
_security fixes will not be backported to older releases_.
|
|
|
|
|
|
|
|
|
|
melonDS DS is only intended to execute code for the hardware it emulates;
|
|
|
|
|
any bug that allows it to execute arbitrary code on the host
|
|
|
|
|
is a vulnerability and should be reported.
|
2024-10-18 21:49:55 +00:00
|
|
|
Reports of other kinds of vulnerabilities
|
|
|
|
|
(e.g. build infrastructure) are also welcome.
|
2024-10-17 11:20:41 +00:00
|
|
|
|
|
|
|
|
If you discover such a bug, please submit a private vulnerability report
|
|
|
|
|
(**not** a public bug)
|
2024-10-18 21:49:55 +00:00
|
|
|
with a homebrew ROM that demonstrates the issue if applicable.
|
2024-10-17 11:20:41 +00:00
|
|
|
|
|
|
|
|
I will share this information with the maintainers of upstream melonDS,
|
|
|
|
|
as such a vulnerability would most likely affect them as well.
|
|
|
|
|
|
|
|
|
|
If you are able to provide a fix,
|
|
|
|
|
please do so in the form of a pull request or a patch file;
|
|
|
|
|
I will merge and release it as soon as possible.
|
