Distributions

Jump directly to maintainer-maintained trackers. Always reconcile package versions with security announcements—never infer patch levels from kernel marketing names alone.

Ubuntu

Canonical CVE pages & Dirty Frag blog

Open Ubuntu notes →

Debian

security-tracker.debian.org matrices

Open Debian notes →

Red Hat ecosystem

Customer Portal + Bugzilla

Open Red Hat notes →

Additional derivatives (AlmaLinux, Rocky, Amazon Linux, etc.) inherit guidance from their upstream rebuild policies—monitor those vendors' CVE portals similarly.