Kaspersky Security Center Linux allows you to manage the updates of third-party software installed on managed devices and fix vulnerabilities in such software through the installation of required updates.
Kaspersky Security Center Linux searches for updates through the Find vulnerabilities and required updates task. When this task is complete, Administration Server receives the lists of detected vulnerabilities and required updates for third-party software installed on the devices that you specified in the task properties. After viewing information about available updates, you can install them on your devices.
Kaspersky Security Center Linux updates some applications by removing the previous version of the application and installing the new one.
A user interaction may be required when you update a third-party application or fix a vulnerability in a third-party application on a managed device. For example, the user may be prompted to close the third-party application if it is currently open.
For security reasons, any third-party software updates that you install by using the Vulnerability and patch management feature are automatically scanned for malware by Kaspersky technologies. These technologies are used for automatic file checks and include virus scanning, static analysis, dynamic analysis, behavior analysis in the sandbox environment, and machine learning.
Kaspersky experts do not perform manual analysis of third-party software updates that can be installed by using the Vulnerability and patch management feature. In addition, Kaspersky experts do not search for vulnerabilities (known or unknown) or undocumented features in such updates, nor do they perform other types of analysis of the updates other than those specified in the paragraph above.
When the metadata of third-party software updates is downloaded to the repository, you can install the updates on client devices by using the Install required updates and fix vulnerabilities task.
The Install required updates and fix vulnerabilities task can be created only if you have the license for the Vulnerability and patch management feature.
When this task is complete, the updates are installed on the managed devices automatically. When the metadata of new updates is downloaded to the Administration Server repository, Kaspersky Security Center Linux checks whether the updates meet the criteria specified in the update rules. All new updates that meet the criteria will be downloaded and installed automatically at the next task run.