Vulnerability Detection in Open Source Software: The Cure and the Cause

Stuart Millar

Research output: Book/ReportOther report

1202 Downloads (Pure)


Most companies do not have a reliable way of being notified when zero-day vulnerabilities are found, or when patches are made available. This means that attack vectors in Open Source Software (OSS) exist longer than they should. This paper discusses the cause of OSS vulnerabilities, why they are a major issue, and how they may be mitigated.
Original languageEnglish
PublisherQueen's University Belfast
Number of pages5
Publication statusUnpublished - 2017


  • Open Source
  • Information Security
  • Vulnerability Profiling
  • static analysis
  • dynamic analysis
  • software assurance
  • machine le

ASJC Scopus subject areas

  • Computer Science (miscellaneous)
  • Computer Science Applications
  • Software


Dive into the research topics of 'Vulnerability Detection in Open Source Software: The Cure and the Cause'. Together they form a unique fingerprint.

Cite this