Chapter 2. Viewing security advisories

This chapter describes where you can find information about Red Hat Security Advisories (RHSA) and how to display the advisories.

2.1. Displaying advisories on the Customer Portal

Red Hat publishes security advisories on the Red Hat Customer Portal. This section describes where you find the advisories, and how to filter and display them.

Procedure

  1. Open https://access.redhat.com/security/security-updates/ in a browser.

    This page lists all security advisories Red Hat published.

  2. Optionally, filter for a specific product, variant, version, and architecture. For example, to display only advisories for Red Hat Enterprise Linux 8, set the following filters:

    • Product: Red Hat Enterprise Linux
    • Variant: All Variants
    • Version: 8

      Alternatively, select a minor version, such as 8.2.

  3. To display details of a specific advisory, click the advisory’s ID in the table.

    customer portal list security advisories

2.2. Displaying a specific advisory using yum

If an update provided by an advisory is not already installed, use the yum utility to display the advisory.

Prerequisites

  • A valid Red Hat subscription is assigned to the host.
  • The ID of the security advisory is known. For details about displaying advisories of installed and available security updates for the host, see Chapter 1, Identifying security updates.
  • The update provided by the advisory is not installed.

Procedure

  1. Display the advisory. For example, to display the details of the RHSA-2019:0997 advisory:

    $ sudo yum updateinfo info RHSA-2019:0997
    ===============================================================================
      Important: python3 security update
    ===============================================================================
      Update ID: RHSA-2019:0997
           Type: security
        Updated: 2019-05-07 05:41:52
           Bugs: 1688543 - CVE-2019-9636 python: Information Disclosure due to urlsplit improper NFKC normalization
           CVEs: CVE-2019-9636
    Description: ...