FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W4286331380> ?p ?o ?g. }

• W4286331380 abstract "Nowadays, vulnerabilities in open source software (OSS) are constantly emerging, posing a great threat to application security. Security patches are crucial in reducing the risk of OSS vulnerabilities. However, many of the vulnerabilities disclosed by CVE/NVD are not accompanied by security patches. Previous research has shown that the auxiliary information in CVE/NVD can aid in the matching of a vulnerability to appropriate commits. The state-of-art research proposed a rank-based approach based on the multiple dimensions of features extracted from the auxiliary information in CVE/NVD. However, this approach ignores the semantic features in the vulnerability descriptions and commit messages, making the model still have room for improvement. In this paper, we propose a novel ranking-based approach VCMATCH (Vulnerability-Commit Match). In addition to extracting the shallow statistical features between the vulnerability and the patch commit, VCMATCH extracts the deep semantic features of the vulnerability descriptions and commit messages. Besides, VCMATCH applies three classification models (i.e., XGBoost, LightGBM, CNN) and uses a voting-based rank fusion method to combine the results of the three models to generate a better result. We evaluate VCMATCH with 1,669 CVEs from 10 OSS projects. The experiment results show that VCMATCH can effectively identify security patches for OSS vulnerabilities in terms of Recall@K and Manual Effort@K, and outperforms the state-of-art model by a statistically significant margin." @default.
• W4286331380 created "2022-07-21" @default.
• W4286331380 creator A5023874610 @default.
• W4286331380 creator A5061140254 @default.
• W4286331380 creator A5062755510 @default.
• W4286331380 creator A5069358349 @default.
• W4286331380 creator A5076983003 @default.
• W4286331380 date "2022-03-01" @default.
• W4286331380 modified "2023-09-25" @default.
• W4286331380 title "VCMatch: A Ranking-based Approach for Automatic Security Patches Localization for OSS Vulnerabilities" @default.
• W4286331380 doi "https://doi.org/10.1109/saner53432.2022.00076" @default.
• W4286331380 hasPublicationYear "2022" @default.
• W4286331380 type Work @default.
• W4286331380 citedByCount "1" @default.
• W4286331380 countsByYear W42863313802023 @default.
• W4286331380 crossrefType "proceedings-article" @default.
• W4286331380 hasAuthorship W4286331380A5023874610 @default.
• W4286331380 hasAuthorship W4286331380A5061140254 @default.
• W4286331380 hasAuthorship W4286331380A5062755510 @default.
• W4286331380 hasAuthorship W4286331380A5069358349 @default.
• W4286331380 hasAuthorship W4286331380A5076983003 @default.
• W4286331380 hasConcept C114614502 @default.
• W4286331380 hasConcept C124101348 @default.
• W4286331380 hasConcept C153180980 @default.
• W4286331380 hasConcept C154945302 @default.
• W4286331380 hasConcept C164226766 @default.
• W4286331380 hasConcept C189430467 @default.
• W4286331380 hasConcept C199360897 @default.
• W4286331380 hasConcept C23123220 @default.
• W4286331380 hasConcept C2777904410 @default.
• W4286331380 hasConcept C33923547 @default.
• W4286331380 hasConcept C38652104 @default.
• W4286331380 hasConcept C41008148 @default.
• W4286331380 hasConcept C77088390 @default.
• W4286331380 hasConcept C95713431 @default.
• W4286331380 hasConceptScore W4286331380C114614502 @default.
• W4286331380 hasConceptScore W4286331380C124101348 @default.
• W4286331380 hasConceptScore W4286331380C153180980 @default.
• W4286331380 hasConceptScore W4286331380C154945302 @default.
• W4286331380 hasConceptScore W4286331380C164226766 @default.
• W4286331380 hasConceptScore W4286331380C189430467 @default.
• W4286331380 hasConceptScore W4286331380C199360897 @default.
• W4286331380 hasConceptScore W4286331380C23123220 @default.
• W4286331380 hasConceptScore W4286331380C2777904410 @default.
• W4286331380 hasConceptScore W4286331380C33923547 @default.
• W4286331380 hasConceptScore W4286331380C38652104 @default.
• W4286331380 hasConceptScore W4286331380C41008148 @default.
• W4286331380 hasConceptScore W4286331380C77088390 @default.
• W4286331380 hasConceptScore W4286331380C95713431 @default.
• W4286331380 hasFunder F4320321001 @default.
• W4286331380 hasFunder F4320338464 @default.
• W4286331380 hasLocation W42863313801 @default.
• W4286331380 hasOpenAccess W4286331380 @default.
• W4286331380 hasPrimaryLocation W42863313801 @default.
• W4286331380 hasRelatedWork W2026095310 @default.
• W4286331380 hasRelatedWork W2041335144 @default.
• W4286331380 hasRelatedWork W2138279922 @default.
• W4286331380 hasRelatedWork W2159863659 @default.
• W4286331380 hasRelatedWork W2237756989 @default.
• W4286331380 hasRelatedWork W2294459391 @default.
• W4286331380 hasRelatedWork W2483845706 @default.
• W4286331380 hasRelatedWork W2968008492 @default.
• W4286331380 hasRelatedWork W4248570251 @default.
• W4286331380 hasRelatedWork W4283836875 @default.
• W4286331380 isParatext "false" @default.
• W4286331380 isRetracted "false" @default.
• W4286331380 workType "article" @default.