Before public disclosure of any security issue, concern, or comment regarding CentOS, our website, our public servers, or mirrors, please email it to the following:
security@centos.org
The above email address is a confidential non-public reporting account that will notifiy proper team members of your issue immediately. Advising us privately of the issue will allow us to address it in the most prudent manner.
A public Security Support Forum for each CentOS product is available in our forums. Any formal security announcements made by the CentOS team will be posted to the News and Announcements in the forums and posted to the CentOS Discussion and Information mailing list. Normal errata announcements are posted in the respective product\'s errata forum and on the errata news ticker.
A CentOS security announcement mailing list is available on the mail list page.
