Testimony issued by the General Accounting Office with an abstract that begins "Flaws in software code can introduce vulnerabilities that may be exploited to cause significant damage to federal information systems. Such risks continue to grow with the increasing speed, sophistication, and volume of reported attacks, as well as the decreasing period of the time from vulnerability announcement to attempted exploits. The process of applying software patches to fix flaws--patch management--is critical to helping secure systems from attacks. At the request of the House Committee on Government Reform and the Subcommittee on Technology, Information Policy, Intergovernmental Relations, and the Census, GAO reviewed the (1) reported status of 24 selected agencies in performing effective patch management practices, (2) tools and services available to federal agencies, (3) challenges to this endeavor, and (4) additional steps that can be taken to mitigate risks created by software vulnerabilities. This testimony highlights the findings of GAO's report, which is being released at this hearing."

Testimony issued by the General Accounting Office with an abstract that begins "This testimony is based on GAO's October 2003 report, Farmer Mac: Some Progress Made, but Greater Attention to Risk Management, Mission, and Corporate Governance Is Needed (GAO-04-116). GAO's testimony presents a brief overview of Farmer Mac and discusses issues raised in its 2003 report, including Farmer Mac's risk management practices and line of credit with Treasury, mission related activities, board structure, and oversight, which is provided by the Farm Credit Administration (FCA)."