1.8 Ensure updates, patches, and additional security software are installed (Not Scored) [SecScan]

This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong.

====== 1.8 Ensure updates, patches, and additional security software are installed (Not Scored) =====  
<code>
Level 1 - Server 
Level 1 - Workstation
</code>
=====Description=====
Periodically patches are released for included software either due to security flaws or to include additional functionality.
=====Rationale=====
Newer patches may contain security enhancements that would not be available through the latest full update. As a result, it is recommended that the latest software patches be used to take advantage of the latest functionality. As with any software installation, organizations need to determine if a given update meets their requirements and verify the compatibility and supportability of any additional software against the update revision that is selected.
=====Audit===== 
Run the following command and verify there are no updates or patches to install:
<Code:bash>
# yum check-update
</Code>
=====Remediation===== 
Use your package manager to update all packages on the system according to site policy. The following command will install all available updates:
<Code:bash>
# yum update
</Code>
=====Notes===== 
Site policy may mandate a testing period before install onto production systems for available updates.