AlmaLinux 9.4 and AlmaLinux 8.10 are both stable! Checkout AlmaLinux OS 9.4 Stable and AlmaLinux OS 8.10 Stable for more information!

Меры безопасности


AlmaLinux OS Foundation предоставляет errata для информирования пользователей о доступных обновлениях, включая проблемы безопасности и исправления ошибок, а также об их значимости путем анализа. Пользователи могут легко получить доступ к этой информации, обратившись к нашему порталу консультаций по безопасности AlmaLinux, известному как AlmaLinux Errata. More details on Errata and how to use it can be found on the AlmaLinux Errata Wiki page.
Additionally, AlmaLinux OS is present in the OSV database.

Errata in JSON format for 3rd party software integration:

GPG Keys

AlmaLinux OS Foundation подписывает все свои пакеты программ с помощью ключа подписи GPG, который по умолчанию проверяется при установке пакетов с помощью dnf или графических средств обновления. Если пакет не подписан или имеет недействительную подпись, dnf или графические средства обновления предупредят об этом пользователя и откажут в его установке.
It’s recommended to verify the signature of a package before you install it.

AlmaLinux OS 9

rsa4096/D36CB86CB86B3716 (2022-01-18): AlmaLinux OS 9 <> Location: /etc/pki/rpm-gpg/RPM-GPG-KEY-AlmaLinux-9 Download: AlmaLinux Download:

BF18 AC28 7617 8908 D6E7 1267 D36C B86C B86B 3716

AlmaLinux OS 8 #2

rsa4096/2AE81E8ACED7258B (2023-10-10): AlmaLinux OS 8 <> Location: /etc/pki/rpm-gpg/RPM-GPG-KEY-AlmaLinux Download: AlmaLinux Download:

BC5E DDCA DF50 2C07 7F15 8288 2AE8 1E8A CED7 258B


rsa4096/429785E181B961A5 (2021-08-20): ELevate <> Location: /etc/pki/rpm-gpg/RPM-GPG-KEY-ELevate Download: AlmaLinux Download:

74E7 F249 EE69 8A4D ACFB 48C8 4297 85E1 81B9 61A5

AlmaLinux OS 8 #1

* Valid until January 12, 2024 - blog post

rsa4096/488FCF7C3ABB34F8 (2021-01-12): AlmaLinux <> Location: /etc/pki/rpm-gpg/RPM-GPG-KEY-AlmaLinux Download: AlmaLinux Download:

5E9B 8F56 17B5 066C E920 57C3 488F CF7C 3ABB 34F8

Security Mailing List

Чтобы получать обновления безопасности и сведения об ошибках, пользователи могут подписаться на Рассылку AlmaLinux о безопасности. Subscribing to the list will allow users to stay informed and updated on any security fixes as soon as they are available.

OpenSCAP and SCAP Workbench

The Security Content Automation Protocol (SCAP) automates vulnerability management, measurement, and policy compliance evaluation of systems. AlmaLinux OS offers an OpenSCAP Guide that instructs on how to use the OpenSCAP and SCAP Workbench to audit your AlmaLinux system security compliance.

AlmaLinux OS also has the availability of the CIS Benchmark.


The Open Vulnerability and Assessment Language (OVAL), offers publicly accessible security information. This includes AlmaLinux OS 8 and 9, which have available public OVAL streams.

You can find more about OVAL Streams on the AlmaLinux OVAL Wiki Page.


The Software Bill of Materials (SBOM) provides a comprehensive list of third-party and open-source components in a codebase, including version numbers, licensing information, and potential vulnerabilities. AlmaLinux Build System has implemented SBOM into its pipeline for security purposes, such as tracing the build process, making it more secure, and reducing the risk of data corruption. Читать ещё about SBOM integration in AlmaLinux.
ОС AlmaLinux также предоставляет Руководство по AlmaLinux SBOM

Secure Boot

Secure Boot is a security feature that ensures a system boots only with trusted software, preventing the loading of unauthorized operating systems or software that could potentially compromise the system's integrity.
AlmaLinux provides Secure Boot support starting with the AlmaLinux 8.4 release.
AlmaLinux shim passes the official review and is signed by Microsoft.

AlmaLinux shim trusts 3 certificates:


Signed for: AlmaLinux OS Foundation Verified by: Sectigo Public Code Signing CA EV R36 Expires: 30.01.2025


Signed for: AlmaLinux OS Foundation Verified by: EV Code Signing Intermediate CA RSA Expires: 19.01.2025


Signed for: AlmaLinux Secure Boot CA Verified by: AlmaLinux Secure Boot CA Expires: 14.03.2034