Red Hat recommends to consume the CSAF VeX advisory feed for Red Hat security advisories, But it seems there is a lag when we compare the Errata page advisories and the advisories present in CSAF feed.

Discrepancy Between Red Hat Product Errata and CSAF Pages

We’ve observed a data inconsistency between the Red Hat Product Errata page and the CSAF advisories page. Specifically, some of the latest RHSA IDs are listed on the Errata page but are missing from the CSAF directory.

Example:

• Visit the Red Hat Product Errata page: https://access.redhat.com/errata-search/?q=he%20image%20digest%20is&p=1&sort=portal_update_date%20desc&rows=10&portal_product=Red%5C%20Hat%5C%20OpenShift%5C%20Container%5C%20Platform&portal_advisory_type=Security%20Advisory&portal_product_variant=Red%20Hat%20OpenShift%20Container%20Platform

Note the advisory RHSA-2025:13806

Now search for this advisory in the CSAF directory:  https://security.access.redhat.com/data/csaf/v2/advisories/2025/

As of now, RHSA-2025:13806 is not listed in the CSAF.

Multiple advisories published on the Red Hat Product Errata page after August 5, 2025, are not yet available on the CSAF page.