Please the "Report a vulnerability" button to provide details about the vulnerability and how to reproduce it (more details).

A maintainer will acknowledge receipt of the that the vulnerability report. After an initial investigation of the report, another message will be sent with details about how the maintainers plan to release the fix or asking for more information about the vulnerability report.