How to Remediate Known Vulnerabilities
Once you become aware of a vulnerability in a third-party component of your code, you naturally want to get rid of it, says Leo Zhang.
How do you do that? If a fix is available, Zhang explains, there are generally two approaches you can take:
- You can patch the component in-place.
- You can upgrade to a component version that does not have the vulnerability, by either:
- Pinning the vulnerable component to a fixed version.
- Doing iterated component upgrades until the vulnerable component has been removed from your dependency installation plan.
This article looks at the pros and cons of these tactics, along with related considerations.
Learn more at FOSSA.
08/28/2023
Related content
- New Apache Struts Flaw Found
-
Vulnerability assessment best practices for enterprises
A vulnerability assessment is an important step toward protecting an organization's critical IT assets. - Open Source Malware on the Rise, According to Sonatype Report
- Intel Releases Spectre Patches for Skylake
- CISA Warns of Widespread Exploitation of Known Confluence Vulnerability
Subscribe to our ADMIN Newsletters
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Most Popular
Focus On Self-Hosting
• Self-Hosted PaaS with Coolify
• Build and Host Docker Images
• Self-Hosted Pritunl VPN Server with MFA
• Self-Hosted Chat Servers
• Self-Hosted Remote Support with RustDesk
Support Our Work
ADMIN content is made possible with support from readers like you. Please consider contributing when you've found an article to be beneficial.
