Red Hat Enterprise Linux 10.2 and 9.8 Bring AI, Quantum Security, and Image Mode
Red Hat has officially released Red Hat Enterprise Linux 10.2 and 9.8, and the updates go far beyond routine maintenance. Together, they push RHEL from a reliable foundation into an intelligent, security-hardened platform built for modern enterprise demands.
On the developer side, the releases bring a meaningful upgrade to the command-line experience. A new optional AI assistant called goose is now available in the extensions repository. It connects to the same trusted AI backend as the existing RHEL command-line assistant, but adds streaming responses and a path toward integration with the new Model Context Protocol (MCP) server for RHEL, currently in developer preview. Additionally, the existing RHEL assistant gains color output support, making commands, scripts, and explanations easier to parse at a glance.
The toolset refresh is extensive. Red Hat Enterprise Linux 10.2 and 9.8 ship updated versions of Go, LLVM, Rust, Python, Ruby, Git, PHP, OpenJDK, PostgreSQL, and MariaDB. PostgreSQL 18, for instance, adds asynchronous I/O support for faster performance. MariaDB 11.8 introduces a new VECTOR datatype, a direct nod to growing AI and machine learning workloads. Developers moving from one release to the next will notice fewer gaps between upstream tooling and what ships in RHEL.
For operations teams, image mode for RHEL, based on the bootc project, gets a significant push forward. A new bootc option lets administrators pre-download OS updates to an entire fleet without triggering an immediate reboot. This gives teams precise control over maintenance windows. A complementary tool called the Bootable Containers and Virtualization Kit (BCVK) further streamlines things by allowing developers to move from a local container build directly into an automatically provisioned test VM, shortening the development loop considerably.
Security in Red Hat Enterprise Linux 10.2 and 9.8 takes on both present and future threats. Sealed images, available as a technology preview in RHEL 10.2, give organizations end-to-end cryptographic integrity for the OS. Teams can sign images with their own secure boot keys and configure target systems to trust only internally certified builds, establishing a complete chain of trust from boot to runtime.
Equally significant is the launch of Red Hat Certificate System 11.0, which addresses the quantum computing threat directly. It integrates NIST-standardized ML-DSA signatures, positioning enterprise PKI to meet emerging post-quantum standards (FIPS 204). Certificate lifespans are shrinking fast, projected to drop to as low as 47 days by 2029. To manage that pace, Certificate System 11.0 introduces zero-touch provisioning, automating certificate issuance with a secure one-time password. What previously took a week of manual effort for 1,000 devices now runs in minutes.
Upgrade paths have also improved. An enhanced version of Leapp now allows conversion to a supported RHEL environment and a major version upgrade in a single command. Combined with new Red Hat Ansible Certified Content that packages Red Hat’s upgrade best practices into an automated procedure, the path forward is considerably smoother.
