Not sure if this is the right thread to ask this on, but I'm wondering what the proper theory on applying IOS updates is. Is it the right thing to do to load the newest version of the IOS on my devices?
Is that something you should continually do or do you stick with the version you have unless there is some kind of problem?
I have Cisco switches, routers, AP's, firewalls.
Security devices often need the newer IOS as the older ones possess vulnerabilities.
If the level of risk is high by running an affected IOS, by all means, upgrade.
If the level of risk is medium to low and there are workarounds, keep the old code.
Always check the Release Notes and PSIRT page for vulnerabilities on IOS releases.