What problem does this paper attempt to address?

The problem that this paper attempts to solve is: **the 1 - day vulnerability detection problem introduced during the reuse of third - party libraries (TPLs)**. Specifically, with the rapid development of software development, developers accelerate the development speed and simplify code maintenance by reusing open - source software (such as third - party libraries). However, this practice also brings security risks. In particular, when third - party libraries are no longer actively maintained, many vulnerable versions will continue to be used. If the software fails to detect and fix these vulnerabilities in a timely manner, it will increase security risks. ### Main problems: 1. **Low maintainability of third - party libraries**: Some third - party libraries may no longer be actively maintained, resulting in incomplete functions or security vulnerabilities. 2. **Complex code dependencies and flexibility**: The reuse methods of third - party libraries are very flexible. They can be fully reused or custom - reused, which makes it complex to detect 1 - day vulnerabilities. 3. **Limitations of existing tools**: Existing tools (such as V1SCAN and MVP) can only handle simple custom - reuse and cannot comprehensively solve the 1 - day vulnerability detection problem. ### Solutions proposed in the paper: To solve the above problems, the author proposes a new tool named **VULTURE**, which aims to effectively detect 1 - day vulnerabilities introduced by the reuse of third - party libraries. The main features of VULTURE include: 1. **Constructing a specialized TPL database**: Through the TPLFILTER method, use large - language models (LLM) to automatically construct a TPL database for a specific platform. This database not only contains common TPL information, but also includes known vulnerabilities and their patch information. 2. **Hash comparison and fine - grained analysis**: VULTURE does not rely on code - level similarity comparison, but adopts a hash - based comparison method to explore the dependencies between the collected TPLs and identify the similarities between TPLs and target projects. 3. **Version and block - level analysis**: To deal with the situation where developers may fix vulnerabilities in a custom way, VULTURE performs version comparison and block - level analysis respectively to capture the fine - grained semantic features at the function level. ### Experimental results: The author applied VULTURE to 10 real - world projects and successfully detected 175 vulnerabilities, demonstrating its effectiveness and efficiency in detecting 1 - day vulnerabilities. ### Formula representation: There are few formulas involved in the paper, but to ensure the correctness and readability of the formulas, here is an example of a key formula mentioned in the paper: - Each function is represented as \( f_c=\langle H, Birth \rangle \), where \( H \) is the hash value of the function and \( Birth \) is the creation time (birth time) of the function. - Each TPL version is represented as \( FC = \{ f_c(i)\mid1\leq i\leq n \} \), where \( n \) is the maximum number of functions included in this TPL version. Through these methods, VULTURE can more accurately detect 1 - day vulnerabilities introduced during the reuse of third - party libraries, helping developers improve software security.