I am currently using Rocky Linux release 8.10 (Green Obsidian) with the kernel version 4.18.0-553.16.1.el8_10.cloud.0.1.x86_64.
In the Nexpose tool, this kernel is flagged as vulnerable, which has resulted in an increased risk score. Could you please provide an update on when a new cloud kernel update might be available?
Additionally, I’d like to know if it would be a good idea to switch from the “cloud” kernel to a “normal” kernel. It seems that cloud kernels receive updates later compared to regular kernels. Would this change improve update timelines and mitigate such vulnerabilities more promptly?
You can do this in your image that you started the instance from:
dnf update
and it will update the packages including the kernel. Assuming that a new cloud kernel has been made. Current kernel version is 4.18.0-553.32.1 if a cloud one is available.