How is AlmaLinux 9 different from RHEL 9 for CVE tracking?

Functionally, very little. AlmaLinux 9 is binary-compatible with RHEL 9 and rebuilds Red Hat's source packages on the same release cadence, so a fix landing in RHEL 9 lands in AlmaLinux 9 within days. Noxen matches against the Red Hat ecosystem feed plus AlmaLinux errata to pick up both channels.

How do I check AlmaLinux 9 CVEs on a host?

For a quick check: `dnf updateinfo list security`. For per-CVE detail with fix versions, Noxen reads rpm package state over SSH and matches against the live ecosystem feed using rpm version semantics (epoch:version-release).

Is AlmaLinux 9 still supported in 2026?

Yes — the AlmaLinux 9 lifecycle tracks RHEL 9 (active maintenance phase through May 2032). Major and minor security errata continue throughout this window.

CVE coverage

AlmaLinux 9 CVE tracker

Noxen pulls AlmaLinux 9 CVE data from the same upstream sources Red Hat publishes against (RHEL 9 binary-compatible). NVD provides the upstream advisory; OSV's Red Hat ecosystem feed provides the rpm-level fix versions. The AlmaLinux project also publishes its own errata, which we cross-reference.

Live

Headline numbers

Total CVE records (all distros)Loading…
Last buildLoading…
OSV records (RH ecosystem + others)Loading…
NVD records (cross-platform)Loading…

How matching works

What Noxen does for an AlmaLinux 9 host

Reads /etc/os-release to confirm AlmaLinux 9 (RHEL 9 binary-compatible).
Reads rpm -qa for installed packages, including epoch and release.
Filters the local feed cache to OSV records tagged with ecosystem AlmaLinux:9 / Red Hat:9, plus NVD records whose CPE matches the installed packages.
Compares installed vs fix versions using rpm version semantics (epoch:version-release).
Emits findings only where the installed version is strictly older than the fix.

Live listings

Top recent critical CVEs (Red Hat ecosystem (RHEL / Rocky / AlmaLinux))

Most-recently-published critical CVEs in the Red Hat ecosystem (RHEL / Rocky / AlmaLinux). Auto-deduped to one row per CVE ID. Snapshot baked at 2026-05-12; live re-fetch on page load.

CVE	Sev.	CVSS	Summary	Package	Fix in	Published
RLSA-2026:10217	critical	9.0	Important: golang security update	golang	0:1.25.9-3.el10_1	2026-05-06
RLSA-2026:10219	critical	9.0	Important: golang security update	golang	0:1.25.9-1.el9_7	2026-05-06
RLSA-2026:10704	critical	9.0	Important: go-toolset:rhel8 security update	delve	0:1.25.2-1.module+el8.10.0+40035+ee0a7047	2026-05-06
RLSA-2025:17129	critical	9.1	Important: idm:DL1 security update	bind-dyndb-ldap	0:11.6-6.module+el8.10.0+1960+1ed527b3	2026-03-18
RLSA-2026:2224	critical	9.4	Critical: keylime security update	keylime	0:7.12.1-11.el9_7.4	2026-02-13
RLSA-2026:2225	critical	9.4	Critical: keylime security update	keylime	0:7.12.1-11.el10_1.4	2026-02-11
RLSA-2026:1472	critical	9.8	Important: openssl security update	openssl	1:3.5.1-7.el10_1	2026-01-30
RLSA-2026:1473	critical	9.8	Important: openssl security update	openssl	1:3.5.1-7.el9_7	2026-01-30

Top recent high-severity CVEs (Red Hat ecosystem (RHEL / Rocky / AlmaLinux))

CVE	Sev.	CVSS	Summary	Package	Fix in	Published
RLSA-2026:14790	high	7.6	Moderate: libpng security update	libpng	2:1.6.40-8.el10_1.3	2026-05-11
RLSA-2026:14819	high	8.8	Moderate: freeipmi security update	freeipmi	0:1.6.17-1.el9_7	2026-05-11
RLSA-2026:14791	high	7.6	Moderate: libpng security update	libpng	2:1.6.37-12.el9_7.3	2026-05-11
RLSA-2026:14929	high	7.8	Important: mingw-libtiff security update	mingw-libtiff	0:4.0.9-4.el8_10	2026-05-11
RLSA-2026:14200	high	7.8	Important: git-lfs security update	git-lfs	0:3.6.1-8.el9_7.1	2026-05-08
RLSA-2026:12285	high	7.5	Important: thunderbird security update	thunderbird	0:140.10.0-1.el10_1	2026-05-07
RLSA-2026:13916	high	7.5	Important: fence-agents security update	fence-agents	0:4.16.0-13.el10_1.4	2026-05-07
RLSA-2026:13857	high	7.5	Important: dovecot security update	dovecot	1:2.3.16-15.el9_7.1	2026-05-07

New to severity terminology? CVE, CVSS, CWE, CPE explained.

Notable

Recent CVEs that AlmaLinux 9 homelabs care about.

CVE-2024-6387 (regreSSHion) — OpenSSH signal-handler race producing pre-auth RCE.. Red Hat advisory · Noxen deep-dive.
CVE-2024-1086 (nf_tables UAF) — Linux kernel privilege-escalation, observed in the wild.. Red Hat advisory.
CVE-2024-3094 (xz backdoor) — Supply-chain backdoor in xz-utils 5.6.0 / 5.6.1.. Red Hat advisory · Noxen deep-dive.

Scan an AlmaLinux 9 fleet with Noxen

Add your AlmaLinux 9 hosts via your existing ~/.ssh/config; Noxen reads rpm package state and matches against the live signed feed. No agent, no SaaS round-trip. $79 one-time.

← back to the CVE dashboard Debian 12 → Rocky 9 →