Yesterday, we updated the Secunia Research page, which lists the advisories describing vulnerabilities discovered internally at Secunia by the Secunia Research team.
The changes to the Secunia Research page are:
- Instead of listing an advisory for the year the vulnerability/vulnerabilities covered by the advisory were discovered, the listing is now based on the publication year. Vulnerabilities e.g. discovered in 2010, but published in 2011 will, therefore, be listed in the 2011 section and not, as before, in the 2010 section.
- The number of advisories published each year as well as the number of vulnerabilities covered by the advisories published that year are clearly listed. Similarly, each published advisory also clearly lists the number of covered vulnerabilities.
- The pending disclosures section has been removed.
- A coordinated disclosures sub-section for vulnerabilities discovered by external researchers, but validated and coordinated by Secunia Research has been added. Each year, a number of talented, external researchers ask Secunia to validate their vulnerability discoveries and then handle the disclosure process on their behalf. In order to highlight these researchers' efforts more clearly than before, this new sub-section has been added.
This new Secunia Research page is a major improvement over the old page and makes the efforts not only of the Secunia Research team evident, but also those of external researchers asking Secunia to verify and handle their vulnerability discoveries.
Chief Security Specialist