Patch based vulnerability matching for binary programs