Share via

app service for linux securit patch status

Kayvan Bahador 1 Reputation point
2021-10-06T04:30:46.627+00:00

Is there anyway to check or see from the Azure portal (or cli) what security patches(CVE) have been applied to a resource? or to rephrase, how can i keep track of what security patches / updates have been applied?

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,965 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Andriy Bilous 11,821 Reputation points MVP Volunteer Moderator
    2021-10-06T04:56:16.383+00:00

    Hello @Kayvan Bahador

    App Service is a Platform-as-a-Service, which means that the OS and application stack are managed for you by Azure; you only manage your application and its data.

    Azure manages OS patching on two levels, the physical servers and the guest virtual machines (VMs) that run the App Service resources. Both are updated monthly, which aligns to the monthly Patch Tuesday schedule. These updates are applied automatically, in a way that guarantees the high-availability SLA of Azure services.

    When severe vulnerabilities require immediate patching, such as zero-day vulnerabilities, the high-priority updates are handled on a case-by-case basis.

    https://learn.microsoft.com/en-us/azure/app-service/overview-patch-os-runtime

    https://stackoverflow.com/questions/61314326/how-to-verify-if-a-security-update-has-been-applied-to-azure-app-service-os

    https://azure.github.io/AppService/2018/01/18/Demystifying-the-magic-behind-App-Service-OS-updates.html

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.