References & Citations
Computer Science > Software Engineering
Title: Tracking Patches for Open Source Software Vulnerabilities
(Submitted on 4 Dec 2021 (v1), last revised 30 Sep 2023 (this version, v2))
Abstract: Open source software (OSS) vulnerabilities threaten the security of software systems that use OSS. Vulnerability databases provide valuable information (e.g., vulnerable version and patch) to mitigate OSS vulnerabilities. There arises a growing concern about the information quality of vulnerability databases. However, it is unclear what the quality of patches in existing vulnerability databases is; and existing manual or heuristic-based approaches for patch tracking are either too expensive or too specific to apply to all OSS vulnerabilities.
Submission history
From: Congying Xu [view email][v1] Sat, 4 Dec 2021 04:39:24 GMT (3956kb,D)
[v2] Sat, 30 Sep 2023 13:13:27 GMT (4223kb,D)
Link back to: arXiv, form interface, contact.