Vulnerability Fixing Policies

Vulnerability Fixing SLA

• High-risk vulnerabilities

  GeminiDB fixes vulnerabilities within one month after a community version detects them and releases fixing solutions. The fixing policies are the same as those of the community version.

• Other vulnerabilities

  Upgrade versions to fix other vulnerabilities.

Fixing Statement

To prevent customers from being exposed to unexpected risks, GeminiDB does not provide other information about vulnerabilities except vulnerability background, vulnerability details, technical analysis, affected functions/versions/scenarios, solutions, and reference information.