United States (change)

Shortcuts: Downloads | Fedora | Red Hat Network

Account Links: Cart | Register | Log In

Main Site Links:

• Services & Products
  • Red Hat Enterprise Linux
    • Server
    • Desktop
  • Red Hat Enterprise Virtualization
    • Server
    • Desktop
  • JBoss Enterprise Middleware
  • Red Hat Services
    • Consulting
    • Training
    • Amentra
  • Messaging, Realtime, Grid (MRG)
  • Systems Management
  • Identity Management
  • All Services & Products
• Solutions
  • Virtualization
  • Migration Center
  • Medium & Large Enterprise Business
  • Enterprise Solutions
  • Industries
    • Education
    • Financial
    • Government
    • Healthcare
    • Oil & Gas
    • Telecommunications
  • Business Needs
    • Business Intelligence
    • Collaboration & Content Management
    • Enterprise Applications
    • Security & Identity Management
  • Customer Success
  • All Solutions
• Partners
  • Partner Programs
    • OEMs
    • Resellers
    • Alliance
    • Training Resellers
    • System Integrators
    • Software (ISV)
    • Runtime
    • Hardware (IHVs)
    • Hosting
  • Partner Help Desk
  • Subscription Center
  • Partners Home
• Community
  • Community Home
• Training
  • Courses
  • Certification
  • Specialized Solutions
  • All Training
• Support
  • Knowledgebase
  • Documentation
  • Downloads
  • Offerings
  • Support Policy
  • Support Process
  • Customer Center
  • All Support
• Company
  • Company Profile
    • Investor Relations
    • Worldwide Offices
    • Contact
  • Customer Success
  • News & Events
    • Press Release Archive
    • News Blog
    • Events Schedule
  • Work at Red Hat
    • Look Inside Red Hat
    • Careers
    • Search Jobs
  • What is Red Hat?
    • Why Red Hat?
    • Why Open Source?
    • Why Collaboration?
    • Why Subscriptions?
    • Red Hat Stories
  • Webinars
  • Videos
  • Company Home
• Buy Online
  • Products
    • Server Operating Systems
    • Desktop Operating Systems
    • Systems Management
    • Infrastructure Products
    • Red Hat Online Training
  • Solutions
    • Small Business
    • Identity Management
    • Developers
    • Storage
    • Software as a Service
  • Order History
  • View Saved Carts
  • Renew Subscriptions
  • Store Catalog

Notifications and advisories

Notification of errata

We give information about security flaws that affect Red Hat products and services in the form of security advisories. Security advisories for all Red Hat products will be published to relevant Red Hat mailing lists. These mailing lists are open for subscription to anyone and have publicly accessible archives.

Advisories and update notifications are also provided via the Red Hat Network for products serviced by the Red Hat Network.

All advisories sent by email from Red Hat are digitally signed.

Official statements

We provide official vendor statements when a new, public security vulnerability is under investigation, or where an issue does not affect Red Hat. These statements are available on the per CVE pages by navigating to a CVE name, or as an XML file from the NIST National Vulnerability Database. Where no official statement exists, the Red Hat Security Response Team should be contacted.

Advance notification

Red Hat do not provide advance notification of private security issues to our partners or customers, or inform them that an investigation is underway for such issues.

For issues already in the public domain, we may notify our partners, customers, or other organizations about our response process or investigations.

Policy for acknowledgment in advisories

Red Hat security advisories contain credits or acknowledgment where appropriate. We aim to include acknowledgment for companies or individuals that have reported issues to us responsibly.

Get notified about new security advisories

A number of public mailing lists are available to get notified about new security advisories for Red Hat products:

• subscribe to rhsa-announce for advisories for every Red Hat product and service.
• subscribe to enterprise-watch-list for advisories for just Red Hat Enterprise products.
• subscribe to jboss-watch-list for advisories for just JBoss Enterprise Middleware products.
• subscribe to rhev-watch-list for just Red Hat Enterprise Virtualization product advisories.

The Red Hat Network can automatically notify you of new updates for Red Hat products that are Red Hat Network enabled.

A Really Simple Syndication (RSS) feed for Red Hat advisories is also available. To take advantage of this service you need an RSS client pointed to the Red Hat Advisory RSS feed.