Rocky Linux has launched an optional Security Repository to provide urgent fixes in exceptional security cases before upstream Enterprise Linux packages are released.
The repository is intended for cases where a significant vulnerability is public, exploit code exists, and waiting for upstream packages would leave systems exposed. It is disabled by default, so standard update behavior remains unchanged unless accelerated security fixes are needed.
This approach is a limited exception to Rocky Linux’s upstream-compatible model. In other words, the repository is not intended as a general fast-track update channel or a replacement for the standard release process.
Additionally, keep in mind that the packages from the Security Repository are versioned for automatic replacement by later upstream Enterprise Linux updates; they do not include traditional errata records and do not appear through dnf update --security as standard advisories.
Unity Warns Developers of Security Vulnerability Affecting Games on Android, Windows, and Linux Platforms
VMware Workstation Pro 25H2 - VMware Workstation Pro is now free
New Lenovo UEFI firmware updates fix Secure Boot bypass flaws