Is AlmaLinux 8 still supported in 2026?

Yes — AlmaLinux 8 tracks RHEL 8's active maintenance phase through May 2029. Security errata continue to land for the full window; the project also publishes its own errata stream cross-referenced with Red Hat's.

How is AlmaLinux 8 different from AlmaLinux 9 for CVE tracking?

Different package version sets, different backport lines. The same upstream CVE typically has separate fix versions in the RHEL 8 channel and the RHEL 9 channel. Noxen reads rpm -qa and /etc/os-release to pick the right ecosystem filter automatically.

How do I check AlmaLinux 8 CVEs on a host?

For a quick check: `dnf updateinfo list security`. For per-CVE detail with fix versions, Noxen reads rpm package state over SSH and matches against the live ecosystem feed using rpm version semantics (epoch:version-release).

CVE coverage

AlmaLinux 8 CVE tracker

Noxen pulls AlmaLinux 8 CVE data from the same upstream sources Red Hat publishes against (RHEL 8 binary-compatible). NVD provides the upstream advisory; OSV's Red Hat ecosystem feed provides the rpm-level fix versions. AlmaLinux 8 has active maintenance through May 2029, so security errata land on the same cadence as RHEL 8.

Live

Headline numbers

Total CVE records (all distros)Loading…
Last buildLoading…
OSV records (RH ecosystem + others)Loading…
NVD records (cross-platform)Loading…

How matching works

What Noxen does for an AlmaLinux 8 host

Reads /etc/os-release to confirm AlmaLinux 8 (RHEL 9 binary-compatible).
Reads rpm -qa for installed packages, including epoch and release.
Filters the local feed cache to OSV records tagged with ecosystem AlmaLinux:8 / Red Hat:8, plus NVD records whose CPE matches the installed packages.
Compares installed vs fix versions using rpm version semantics (epoch:version-release).
Emits findings only where the installed version is strictly older than the fix.

Live listings

Top recent critical CVEs (Red Hat ecosystem (RHEL / Rocky / AlmaLinux))

Most-recently-published critical CVEs in the Red Hat ecosystem (RHEL / Rocky / AlmaLinux). Auto-deduped to one row per CVE ID. Snapshot baked at 2026-05-16; live re-fetch on page load.

CVE	Sev.	CVSS	Summary	Package	Fix in	Published
RLSA-2026:10217	critical	9.0	Important: golang security update	golang	0:1.25.9-3.el10_1	2026-05-06
RLSA-2026:10219	critical	9.0	Important: golang security update	golang	0:1.25.9-1.el9_7	2026-05-06
RLSA-2026:10704	critical	9.0	Important: go-toolset:rhel8 security update	delve	0:1.25.2-1.module+el8.10.0+40035+ee0a7047	2026-05-06
RLSA-2025:17129	critical	9.1	Important: idm:DL1 security update	bind-dyndb-ldap	0:11.6-6.module+el8.10.0+1960+1ed527b3	2026-03-18
RLSA-2026:2224	critical	9.4	Critical: keylime security update	keylime	0:7.12.1-11.el9_7.4	2026-02-13
RLSA-2026:2225	critical	9.4	Critical: keylime security update	keylime	0:7.12.1-11.el10_1.4	2026-02-11
RLSA-2026:1472	critical	9.8	Important: openssl security update	openssl	1:3.5.1-7.el10_1	2026-01-30
RLSA-2026:1473	critical	9.8	Important: openssl security update	openssl	1:3.5.1-7.el9_7	2026-01-30

Top recent high-severity CVEs (Red Hat ecosystem (RHEL / Rocky / AlmaLinux))

CVE	Sev.	CVSS	Summary	Package	Fix in	Published
RLSA-2026:17481	high	7.4	Important: rsync security update	rsync	0:3.1.3-25.el8_10	2026-05-15
RLSA-2026:16196	high	7.8	Important: kernel-rt security update	kernel-rt	0:4.18.0-553.124.1.rt7.465.el8_10	2026-05-14
RLSA-2026:16252	high	8.2	Important: jq security update	jq	0:1.6-12.el8_10	2026-05-14
RLSA-2026:16875	high	7.8	Important: git-lfs security update	git-lfs	0:3.4.1-10.el8_10	2026-05-14
RLSA-2026:17533	high	7.8	Important: gimp:2.8 security update	gimp	2:2.8.22-26.module+el8.10.0+40075+a21479b4.4	2026-05-14
RLSA-2026:16195	high	7.8	Important: kernel security update	kernel	0:4.18.0-553.124.1.el8_10	2026-05-14
RLSA-2026:16692	high	8.2	Important: jq security update	jq	0:1.7.1-11.el10_1.0.2	2026-05-14
RLSA-2026:16062	high	7.8	Important: kernel security update	kernel	0:6.12.0-124.56.1.el10_1	2026-05-14

New to severity terminology? CVE, CVSS, CWE, CPE explained.

Notable

Recent CVEs that AlmaLinux 8 fleets care about.

CVE-2024-6387 (regreSSHion) — OpenSSH signal-handler race producing pre-auth RCE.. Red Hat advisory · Noxen deep-dive.
CVE-2024-1086 (nf_tables UAF) — Linux kernel privilege-escalation, observed in the wild.. Red Hat advisory.
CVE-2024-3094 (xz backdoor) — Supply-chain backdoor in xz-utils 5.6.0 / 5.6.1.. Red Hat advisory · Noxen deep-dive.

Scan an AlmaLinux 8 fleet with Noxen

Add your AlmaLinux 8 hosts via your existing ~/.ssh/config; Noxen reads rpm package state and matches against the live signed feed. No agent, no SaaS round-trip. $79 one-time.

← back to the CVE dashboard AlmaLinux 9 → Rocky 9 →