This page has information on how to report any security bugs you might find in Crowd, and what we will do to fix the problem and announce the solution.
On this page:
Finding and Reporting a Security Vulnerability
Atlassian's approach to reporting security vulnerabilities is detailed in How to Report a Security Issue.
Publication of Security Advisories
Atlassian's approach to releasing security advisories is detailed in Security Advisory Publishing Policy.
Severity Levels
Atlassian's approach to ranking security issues is detailed in Severity Levels for Security Issues.
Patches and Fixes
Atlassian's approach to releasing patches for security issues is detailed in Security Patch Policy.