Zimbra can be updated using apt update or yum update, and it is highly recommended to install Zimbra updates (patches) as they are released, especially in case of patches that include security fixes.
Here are a few ways to stay informed on Zimbra Security updates:
Subscribe to these RSS feeds:
- https://wiki.zimbra.com/security-advisory-feed.php (no details, can be used for security notification purposes)
- https://blog.zimbra.com/feed/ (includes patches and security news with details and other news)
You can use Zimbra Classic RSS feeds or Zimbra Modern RSS feeds or some other feed reader like r2e on Linux.
You can manually check this page: https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories
Or subscribe to the Zeta Alliance mailing lists: https://lists.zetalliance.org/mailman/listinfo/users_lists.zetalliance.org
Great post. Many thanks!
Have you thought about publishing errata for the packages your distribute? Thus, updates would also show up on platforms like The Foreman?
Though, the security warnings arrive sufficiently early in my inbox.
Thanks for the errata suggestion, and good to know you receive the security notifications. At this time we are not publishing any additional errata other than what we have in the release notes.