Is Red Hat Enterprise Linux 8 getting security updates?

Red Hat · supported · current 8.10 · Red Hat Security Advisories ↗

SupportActive

End of life2029-05-31

Recent RHSAs4

CVEs covered6

How to stay patched

On an OS release, security comes from applied updates, not the release number. Install the fixes below with sudo dnf upgrade --security.

Recent security notices (RHSA) affecting 8

From Red Hat Security Advisories — newest first. Open for the full advisory.

RHSA-2026:22380 RHSA-2026:22380 — Undici: Information disclosure due to improper cache-control header parsing (moderate) 3 CVEs RHSA-2026:22934 RHSA-2026:22934 — undici WebSocket client vulnerable to denial of service via cumulative fragment bypass (important) 1 CVE RHSA-2026:11342 RHSA-2026:11342 — perl-Socket: Information Disclosure due to Out-of-Bounds Read (moderate) 1 CVE RHSA-2026:26234 RHSA-2026:26234 — Axios: Information disclosure of proxy credentials via HTTP redirects (important) 1 CVE

CVEs in these notices

Each links to Red Hat's CVE tracker (per-release fix status).

CVE-2026-9678 CVE-2026-9697 CVE-2026-6734 CVE-2026-9675 CVE-2026-12087 CVE-2026-44486

Other Red Hat Enterprise Linux releases

Red Hat Enterprise Linux 9 Red Hat Enterprise Linux 10

Frequently asked

Is Red Hat Enterprise Linux 8 still getting security updates?

Red Hat Enterprise Linux 8 is supported and receiving security updates until 2029-05-31. The 4 most recent Red Hat Security Advisories (RHSA) for it cover 6 CVEs. On an OS release, security comes from applied updates, not the release number — run sudo dnf upgrade --security to install these fixes.

When does Red Hat Enterprise Linux 8 reach end-of-life?

Red Hat Enterprise Linux 8 is supported until 2029-05-31.

Built from Red Hat Security Advisories and endoflife.date. An OS release's security depends on the updates you've actually applied, not its version — always verify with Red Hat's official advisories ↗ and keep your system current.