Skip to content
Log In

RHEL 9 must remove all software components after updated versions have been installed.

An XCCDF Rule

Description

Previous versions of software components that are not removed from the information system after updates have been installed may be exploited by some adversaries.

ID
SV-257824r1044886_rule
Version
RHEL-09-214035
Severity
Low
References
Updated

Remediation Templates

A Manual Procedure

Configure RHEL 9 to remove all software components after updated versions have been installed.

Edit the file /etc/dnf/dnf.conf by adding or editing the following line:

 clean_requirements_on_remove=True