What is Red Hat's security patch and backport practice?

Solution Verified - Updated -

Environment

  • Red Hat Enterprise Linux (RHEL)
  • Red Hat Enterprise Virtualization (RHEV)
  • Red Hat JBoss Middleware Products

Issue

  • What is Red Hat's security patch and backport practice?
  • Are Red Hat packages the upstream versions?
  • Are all known security issues resolved in a package version?
  • Will Red Hat fix future security issues in packages as they are discovered?

Resolution

Additional Information

This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.

3 Comments

I want to know how to tell what patches are missing when backporting is used.

See https://access.redhat.com/solutions/10021 For any further detail please open a support ticket

You can try the RPM changelog vs the upstream changelog.