How Long Do Vulnerabilities Live in the Code? A Large-Scale EmpiricalMeasurement Study on FOSS Vulnerability Lifetimes

Published in In 31st USENIX Security Symposium, USENIX Security 2022, Boston, MA, USA, August 10-12, 2022, 2022

Recommended citation: Nikolaos Alexopoulos, Manuel Brack, Jan Wagner, Tim Grube, Max M{\"{u}}hlh{\"{a}}user"How Long Do Vulnerabilities Live in the Code? A Large-Scale EmpiricalMeasurement Study on FOSS Vulnerability Lifetimes." In 31st USENIX Security Symposium, USENIX Security 2022, Boston, MA, USA, August 10-12, 2022, 2022. https://www.usenix.org/conference/usenixsecurity22/presentation/alexopoulos