Can someone explain why CVE-2023-31436 is listed in the Red Hat site and “Affected” for RHEL yet it is not found in the AlmaLinux CVE search site (provided by Tux Care)?
Surely CVE-2023-31436(kernel vulnerability) is listed RH(or Debian, Ubuntu, SUSE, Amazon Linux) site.
As far as I know, AlmaLinux’s errata site issues an advisory per package update.
This is same as CentOS and a few of other RHEL downstream distro.