How Long Do Vulnerabilities Live in the Code? A Large-Scale EmpiricalMeasurement Study on FOSS Vulnerability Lifetimes

Published in In 31th USENIX Security Symposium, USENIX Security 2022, Boston, MA, USA, August 10-12, 2022 (to appear), 2022

Recommended citation: Nikolaos Alexopoulos, Manuel Brack, Jan Wagner, Tim Grube, Max M{\"{u}}hlh{\"{a}}user"How Long Do Vulnerabilities Live in the Code? A Large-Scale EmpiricalMeasurement Study on FOSS Vulnerability Lifetimes." In 31th USENIX Security Symposium, USENIX Security 2022, Boston, MA, USA, August 10-12, 2022 (to appear), 2022. https://www.alexopoulos.ch/files/alexopoulos2022lifetimes.pdf