project-kb icon indicating copy to clipboard operation
project-kb copied to clipboard
verified publisher icon SAP

[import] implement extraction of fix-commits from NVD feeds

Open copernico opened this issue 5 years ago • 2 comments

The NVD does contain fix-commits for some CVEs: extract them and represent them as statements.

copernico avatar Oct 07 '20 11:10 copernico

For example, this paper collects 3750 vulnerabilities from NVD (note: for some reason they rely on crawling and scraping instead of just downloading the data feeds from the NVD): https://dl.acm.org/doi/10.1145/3379597.3387501

copernico avatar Oct 07 '20 15:10 copernico

Another (better) paper here: https://dl.acm.org/doi/10.1145/3468264.3473122

copernico avatar Apr 13 '22 13:04 copernico