Arm takes security vulnerabilities seriously and aims to quickly address any issues reported.

Arm is committed to security and welcomes feedback from researchers and the security community to improve its products and services.

For issues found in the Arm Disassembly Library project, follow Arm's policy on reporting a product security vulnerability.

For issues found in the LLVM project (i.e. source files in src/llvm-project/), the LLVM security guidelines will be followed.