According to Foresight News, Bitcoin Core developers have formulated a 'critical vulnerability' disclosure policy. Antoine Poinsot, a core developer, recently stated that the new policy would allow for better communication of the risks of running outdated versions of Bitcoin Core. It will also provide a standardized disclosure process, encouraging researchers to discover and responsibly disclose vulnerabilities. 'Providing security vulnerabilities to a wider group of contributors helps prevent future security vulnerabilities,' he said.
In addition, the new disclosure policy will classify vulnerabilities according to four levels of severity: the first category is low-level (difficult to exploit, minor impact vulnerabilities); the second category is medium-level (limited impact vulnerabilities, such as local network remote crashes); the third category is high-level (potentially significant impact); the fourth category is critical (threatening the integrity of the entire network).