Security News > 2022 > January > Meeting Patching-Related Compliance Requirements with TuxCare
First, there are compliance requirements that state a maximum window between patch release and applying that patch.
Delayed patching leaves an extended window, but even patching within compliance regulations can still lead to a very long risk window.
KernelCare addresses both compliance concerns and threat windows by providing live patching for the Linux Kernel within hours of a fix being available, thus reducing the exposure window and meeting or exceeding requirements in compliance standards.
The unfortunate side effect of being used by other applications is that any patching applied to a library will incur business-disrupting downtime, just like kernel patching.
Another TuxCare product, QEMUcare, takes away the complexity of patching virtualization hosts that rely on QEMU. Prior to live patching, getting QEMU up to date was a task that used to imply extensive migration of virtual machines around nodes, a complex and error-prone task that would impact performance and usability of those virtual machines.
With our established live patching service now also joined by patching across libraries, virtualization and more, TuxCare provides a truly comprehensive patching service that fills the major security gaps that so many organizations battle with.
News URL
https://thehackernews.com/2022/01/meeting-patching-related-compliance.html