UCF STIG Viewer Logo

All application software must be current.


Overview

Finding ID Version Rule ID IA Controls Severity
V-25251 OSX00055 M6 SV-37190r1_rule VIVM-1 Medium
Description
Major software vendors release security patches and hot fixes to their products when security vulnerabilities are discovered. It is essential these updates be applied in a timely manner to prevent unauthorized persons from exploiting identified vulnerabilities. If the application software is no longer supported it should be updated or removed.
STIG Date
MAC OSX 10.6 Workstation Security Technical Implementation Guide Draft 2013-01-10

Details

Check Text ( C-35889r1_chk )
Open a terminal session and enter the following command.
sudo softwareupdate --list or sudo softwareupdate --list --all
Review the result for proper versions and current patch level.
GUI procedures:
1. Choose Apple (?) > Software Update.
2. Select Scheduled Check & Installed Updates.
3. Verify all current software updates are installed. If the current software updates are not installed, this is a finding.

NOTE: This check does not show third party software or updates.
Fix Text (F-28170r2_fix)
Install current software updates and patches.

NOTE: Do not enable Automatic Updating as this will conflict with V-25298.