Updating a typical linux server can seem daunting, but it is not complex. For example to update a centos linux system:
rpm -qa | grep -i kernel &&
yum -y update &&
reboot &&
.....
After system comes back online, ensure the kernel is a newer version
rpm -qa | grep -i kernel
Other utilities like ukuu for debian or ubuntu systems make updating the kernel a breeze.
If you're worried about specific packages, sure that can be daunting, so avoid updating software you are concerned about breaking ( keep an eye on security alerts for that software, which you should be doing anyway if you are using it on a VM container, or serverless... none are immune to vulnerabilities! ) and do not install unnecessary software.
rpm -qa | grep -i kernel && yum -y update && reboot && ..... After system comes back online, ensure the kernel is a newer version rpm -qa | grep -i kernel
Other utilities like ukuu for debian or ubuntu systems make updating the kernel a breeze.
If you're worried about specific packages, sure that can be daunting, so avoid updating software you are concerned about breaking ( keep an eye on security alerts for that software, which you should be doing anyway if you are using it on a VM container, or serverless... none are immune to vulnerabilities! ) and do not install unnecessary software.