Determine and document software patches or the extent of releases that would leave software vulnerable.