Patch Management does not coincide with the compliance listed in Windows Update, MBSA, WSUS or other 3rd Party Tool lists as Vulnerable, nor for YUM and other tools used for patching Linux.
Patch Management 7.5.x through 8.x does not support all Software Updates, and does not support Software Upgrades, for the current logic of the product is mainly directed towards managing Security Updates.
Patch Management Solution is limited to the list provided in the Import Patch Data for Windows > Vendors and Software documented on HOWTO79563, for this list is all of the supported vendors and software provided by the product and is regularly updated.
The following Software Update types are generally not supported:
Additionally, the current patching for Linux is currently managed via a Server-side Targeting Resolution on the SMP Server.
Advisory: First check the release date of the desired update from the vendor, for it may have only been released within the last day or so, and Patch Management's goal is to have the updates included in the .cab file release within 24 hours for the English versions (Note: These releases generally fall on Wednesday/Friday of each week).
Additionally, if the requested Software Update is not present and it doesn't fall into the realm of unsupported updates as outlined above; review the Software Update Request with Patch Management Backline to have it reviewed for distribution.
Confirm the Software Update is not already managed by reviewing the following steps:
1. Ensure the update is not listed in the Patch Remediation Center
2. Search the Knowledge Management site for that individual update KB number or Bulletin Number will be listed in the release notes for each respective release of Patch Management:
3. If you have access to the Microsoft SQL Server Management Studio; run the following against the Symantec_CMDB (Database default name):
select * from Inv_Software_Update
where FileName like '%UPDATENAME%' --e.g. KB123456
4. If the Software Update is unmanageable: An alternative solution is to create a custom software delivery package and task to deploy the software update. Do this if you can't wait for the update to be included in the next PMImport or if your update is only needed for your environment and is not appropriate to be included in the PMImport catalog that others will receive.
Advisory: the Linux 'Server-side Targeting Resolution' is currently being reviewed for enhancement as outlined on INFO3650. Please subscribe to that article to receive notifications when the product is updated with the 'Client-side Targeting Resolution'