Fixing CVE without sudo apt-get upgrade in Ubuntu [closed]

For fix CVE-2024-28085 amazon suggests:

Nameutil-linuxInstalled version / Fixed versionFor fix CVE-2024-28085 amazon suggests:Upgrade your installed software packages to the proposed fixed in version and release.apt-get update && apt-get upgrade

Why can I not just fix the the package util-linux, but instead should do an update and upgrade of all packages?