I found this vulnerability with polkit. It was found in Jan 22. How does keeping Linux updated security wise works in general?
If I run dnf update on CentOS9 - will it fix it? Or shall I look into each and every vulnerability myself and fix it manually?
It should fix it.
Errata are of three types: bug, security and enhancements.
with dnf update, you will get all of them.
You can filter as well; for e.g., to check only for security updates, run:
dnf check-update --security
and you can apply them with:
dnf update --security
