Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Why LLMs Fail: A Failure Analysis and Partial Success Measurement for Automated Security Patch Generation

Amir Al-Maamari

TL;DR

These findings demonstrate that LLM security patches require rigorous validation before deployment, and the dominant failure mode is semantic misunderstanding: LLMs produce syntactically valid code but apply incorrect repair strategies.

Abstract

Large Language Models (LLMs) show promise for Automated Program Repair (APR), yet their effectiveness on security vulnerabilities remains poorly characterized. This study analyzes 319 LLM-generated security patchesacross 64 Java vulnerabilities from the Vul4J benchmark. Using tri-axis evaluation (compilation, security via PoV tests, functionality via test suites), the analysis reveals that only 24.8% of patches achieve full correctness, while 51.4% fail both security and functionality. The dominant failure mode is semantic misunderstanding: LLMs produce syntactically valid code but apply incorrect repair strategies. The proposed Security Repair Score (SRS) quantifies this gap, showing LLMs preserve functionality (mean 0.832) but struggle with security (mean 0.251). Vulnerability type strongly predicts difficulty, with fix rates ranging from 0% (input validation) to 45% (infinite loop). These findings demonstrate that LLM security patches require rigorous validation before deployment.

Why LLMs Fail: A Failure Analysis and Partial Success Measurement for Automated Security Patch Generation

TL;DR

These findings demonstrate that LLM security patches require rigorous validation before deployment, and the dominant failure mode is semantic misunderstanding: LLMs produce syntactically valid code but apply incorrect repair strategies.

Abstract

Large Language Models (LLMs) show promise for Automated Program Repair (APR), yet their effectiveness on security vulnerabilities remains poorly characterized. This study analyzes 319 LLM-generated security patchesacross 64 Java vulnerabilities from the Vul4J benchmark. Using tri-axis evaluation (compilation, security via PoV tests, functionality via test suites), the analysis reveals that only 24.8% of patches achieve full correctness, while 51.4% fail both security and functionality. The dominant failure mode is semantic misunderstanding: LLMs produce syntactically valid code but apply incorrect repair strategies. The proposed Security Repair Score (SRS) quantifies this gap, showing LLMs preserve functionality (mean 0.832) but struggle with security (mean 0.251). Vulnerability type strongly predicts difficulty, with fix rates ranging from 0% (input validation) to 45% (infinite loop). These findings demonstrate that LLM security patches require rigorous validation before deployment.
Paper Structure (17 sections, 2 equations, 2 figures, 5 tables)

This paper contains 17 sections, 2 equations, 2 figures, 5 tables.

Table of Contents

  1. Introduction
  2. Background
  3. Approach
  4. Evaluation Protocol
  5. Metrics
  6. Experimental Setup
  7. Dataset
  8. LLM
  9. Threats to Validity
  10. Results and Discussion
  11. RQ1: How Do Patches Fail?
  12. RQ2: To What Degree Do Patches Partially Succeed?
  13. RQ3: Which Characteristics Predict Difficulty?
  14. Implications
  15. Related Work
  16. ...and 2 more sections

Figures (2)

  • Figure 1: Experimental pipeline: vulnerable code $\rightarrow$ LLM $\rightarrow$ patch extraction $\rightarrow$ tri-axis evaluation.
  • Figure 2: SRS distribution showing bimodal pattern: clusters at SRS$\approx$1.0 (perfect) and SRS$\approx$0.5 (functional but insecure).