Linux security is central to each release of Ubuntu, the most widely-used Linux supply. With Ubuntu’s predictable week-long release cycle, most users know when to expect the most recent upstream open source capabilities and safety.
Each two years in April, a Long Term Support (LTS) release is published. Ubuntu LTS releases are commonly used in business environments, with over 60 percent of large scale manufacturing clouds conducting Ubuntu LTS pictures. Each new LTS release is supported for ten years complete; five decades of regular support, and five years of support under Ubuntu Advantage for Infrastructure (UA-I). UA-I provides organisations and users access to crucial security fixes and patches, including Canonical’s Extended Security Maintenance (ESM) and Kernel Livepatch services.
Twice annually, in April and October, interim releases have been printed. They are widely employed by people interested in the newest features and capable of updating more frequently. Its enhanced capabilities include the most current OpenStack Train release for live-migration assistance, enhanced security for Kubernetes deployments at the edge and significant updates to desktop performance. Standard support for an interim release is provided for nine months with no extra Linux support expansion offered.
10 Decades of constant security under the Extended Security Maintenance (ESM)
ESM provides Linux security patches against large and critical security vulnerabilities for an extended time period. The ESM service is the end result of Canonical’s commitment to continuously provide security patches for Ubuntu LTS releases to secure Ubuntu systems and enterprise workloads in production for those unable to update their systems more often.
Ubuntu 14.04 (Trusty Tahr) slipped to the ESM support phase in April of this year, with many applying this support to secure their own Ubuntu environments. The next release to be coated by ESM is Ubuntu 16.04 LTS (Xenial Xerus, which is currently under standard support till 2021).
Kernel Livepatch — automatic security patches
Safety, efficiency and automation are the main tenets behind Canonical’s product and support offerings. Kernel Livepatch is a service which embodies each of these tenets, as it automatically applies the latest kernel security patches without rebooting.
Livepatch isn’t merely the most secure way to maintain the kernel up-to-date. It also saves time and effort required to apply patches manually. Consequently, it increases the overall accessibility of an organisation’s infrastructure.
To test and get started using Livepatch, anyone can subscribe to 3 machines for free. For those needing security coverage on a bigger scale, go ahead to buy Ubuntu Advantage for Infrastructure to find access to Kernel Livepatch, ESM, and much more.