====== 1.8 Ensure updates, patches, and additional security software are installed (Not Scored) ======
=====Profile Applicability=====  
<code>
Level 1 - Server 
Level 1 - Workstation
</code>
=====Description=====
Periodically patches are released for included software either due to security flaws or to include additional functionality.
=====Rationale=====
Newer patches may contain security enhancements that would not be available through the latest full update. As a result, it is recommended that the latest software patches be used to take advantage of the latest functionality. As with any software installation, organizations need to determine if a given update meets their requirements and verify the compatibility and supportability of any additional software against the update revision that is selected.
=====Audit===== 
Run the following command and verify there are no updates or patches to install:
<Code:bash>
# apt-get -s upgrade
</Code>
=====Remediation===== 
Use your package manager to update all packages on the system according to site policy.
=====Notes===== 
Site policy may mandate a testing period before install onto production systems for available updates.